Beast code in Giters

allisone's repositories

can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

000

DomLink

A tool to link a domain with registered organisation names and emails, to other domains.

Language:PythonMIT000

cheat.sh

the only cheat sheet you need

Language:PythonMIT000

git-all-secrets

A tool to capture all the git secrets by leveraging multiple open source git searching tools

Language:GoMIT000

sqlmap

Automatic SQL injection and database takeover tool

Language:PythonNOASSERTION000

vuLnDAP

A vulnerable LDAP based web app written in Golang

Language:GoGPL-3.0000

bugcrowd_university

Open source education content for the researcher community

CC-BY-4.0000

XSStrike

XSS Scanner equipped with powerful fuzzing engine & intelligent payload generator

Language:PythonMIT000

EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Language:PythonGPL-3.0000

Aron

Aron is a GO script for finding hidden GET & POST parameters

Language:GoGPL-3.0000

Amass

In-Depth DNS Enumeration written in Go

Language:GoNOASSERTION100

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:Python000

retire.js

scanner detecting the use of JavaScript libraries with known vulnerabilities

Language:RoffNOASSERTION000

Sublist3r

Fast subdomains enumeration tool for penetration testers

Language:PythonGPL-2.0000

SubOver

A Powerful Subdomain Takeover Tool

Language:GoBSD-2-Clause000

2ndOrder

Chrome extension to inspect and find domains that don't resolve or have expired

Language:JavaScript000

cloudgoat

Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool

Language:HCLBSD-3-Clause000

goaltdns

A permutation generation tool written in golang

Language:GoMIT000

subjack

Hostile Subdomain Takeover tool written in Go

Language:GoApache-2.0000

pureblood

A Penetration Testing Framework created for Hackers / Pentester / Bug Hunter

Language:PythonMIT000

Raccoon

A high performance offensive security tool for reconnaissance and vulnerability scanning

Language:PythonMIT000

burp-rest-api

REST/JSON API to the Burp Suite security tool.

Language:JavaBSD-2-Clause000

assetnote-poc

(Proof of concept) push notifications for passive DNS data

Language:JavaScript000

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

Language:CNOASSERTION000

smith

Simple wrapper for meg that sieves through meg's output for you.

Language:Shell000

HUNT

Language:PythonApache-2.0000

Photon

Incredibly fast crawler which extracts urls, emails, files, website accounts and much more.

Language:Python000

ScanCannon

Combines the speed of masscan with the reliability and detailed enumeration of nmap

Language:ShellNOASSERTION000

XssPy

XssPy - Web Application XSS Scanner

Language:PythonMIT000

meg

Fetch many paths for many hosts - without killing the hosts

Language:GoMIT000