Ismail Achabi's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
apkleaks
Scanning APK file for URIs, endpoints & secrets.
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
BChecks
BChecks collection for Burp Suite Professional
degoogle
search Google and extract results directly. skip all the click-through links and other sketchiness
fake-sms
A simple command line tool using which you can skip phone number based SMS verification by using a temporary phone number that acts like a proxy.
ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
hackerone-reports
Top disclosed reports from HackerOne
HowToHunt
Collection of methodology and test case for various web vulnerabilities.
jsluice
Extract URLs, paths, secrets, and other interesting bits from JavaScript
jsmon
a javascript change monitoring tool for bugbounties
jwt_tool
:snake: A toolkit for testing, tweaking and cracking JSON Web Tokens
Mindmap
This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them
mitmproxy2swagger
Automagically reverse-engineer REST APIs via capturing traffic
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Penetration-List
Penetration-List: A comprehensive resource for testers, covering all types of vulnerabilities and materials used in Penetration Testing. Includes payloads, dorks, fuzzing materials, and offers in-depth theory sections. Visit our Medium profile for more information.
pentest-guide
Penetration tests guide based on OWASP including test cases, resources and examples.
rawchars
Raw text files containing characters used in different languages such as English, French, German, Chinese, Japanese, Korean.
takeover
Sub-Domain TakeOver Vulnerability Scanner
trufflehog
Find and verify credentials
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
Web_Hacking
Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.
zile
Extract API keys from file or url using by magic of python and regex.