Abdullah Rahmatullah's repositories
SecretsRegexFinder
Python script for recursively searching files in a directory for secrets and API keys using regular expressions.
all-about-apikey
Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
ars0n-framework
A Modern Framework for Bug Bounty Hunting
bbscope
Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!
blh
Find broken links, missing images, etc within your HTML.
Bug-Bounty-resources
Here Are Some Bug Bounty Resource From Twitter
Bug_Bounty_Notes
A collection of notes for bug bounty hunting
Burp-1.7-version
BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!
can-i-take-over-dns
"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones
cent
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
EC2-Start-Stop
This script is used to automatically start/stop ec2 instance to match target ip in aws ip pool to takeover subdomain..
GCPShardJuggler
A tool to aid in DNS Takeovers for Google Cloud [Possibly fixed]
Leaked-Credentials
how to look for Leaked Credentials !
nuclei-templates
My own Custom nuclei templates
NucleiFuzzer
NucleiFuzzer is a powerful automation tool for detecting xss,sqli,ssrf,open-redirect..etc vulnerabilities in web applications
rayder
A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
SQL_Injection-Techniques
Advanced SQL Injection Techniques for Bug Bounty Hunters
tracker-radar
Data set of top third party web domains with rich metadata about them
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
weaponised-XSS-payloads
XSS payloads designed to turn alert(1) into P1
wordlists
Real-world infosec wordlists, updated regularly
XnlReveal
A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements.