Andrey Stepanov's starred repositories

the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

License:MITStargazers:126860Issues:2325Issues:0

shhgit

Ah shhgit! Find secrets in your code. Secrets detection for your GitHub, GitLab and Bitbucket repositories.

Language:JavaScriptLicense:MITStargazers:3778Issues:63Issues:65

SecretScanner

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Language:GoLicense:MITStargazers:2928Issues:48Issues:39

ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Language:PythonLicense:MITStargazers:2259Issues:31Issues:119

list

The Public Suffix List

Language:GoLicense:MPL-2.0Stargazers:1835Issues:89Issues:319

waymore

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Language:PythonLicense:MITStargazers:1379Issues:12Issues:33

nginxpwner

Nginxpwner is a simple tool to look for common Nginx misconfigurations and vulnerabilities.

Language:PythonLicense:Apache-2.0Stargazers:1328Issues:11Issues:6

inventory

Asset inventory of over 800 public bug bounty programs.

Language:ShellLicense:MITStargazers:1079Issues:49Issues:5

GAP-Burp-Extension

Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

xnLinkFinder

A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target

ShadowClone

Unleash the power of cloud

Language:PythonLicense:Apache-2.0Stargazers:547Issues:11Issues:39

gotator

Gotator is a tool to generate DNS wordlists through permutations.

Language:GoLicense:GPL-3.0Stargazers:420Issues:6Issues:12

megplus

Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]

Language:ShellLicense:MITStargazers:301Issues:17Issues:0

punter

Hunt domain names using DNSDumpster, WHOIS, Reverse WHOIS, Shodan, Crimeflare

Language:PythonLicense:UnlicenseStargazers:294Issues:27Issues:12

project-black

Pentest/BugBounty progress control with scanning modules

Language:PythonLicense:GPL-2.0Stargazers:285Issues:13Issues:71

wildcard

A browser extension for customizing web apps with a spreadsheet view

fleex

Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.

Language:GoLicense:Apache-2.0Stargazers:232Issues:9Issues:33

emuto

manipulate JSON files

Language:JavaScriptLicense:MITStargazers:221Issues:5Issues:98

crithit

Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

Language:MakefileLicense:GPL-3.0Stargazers:201Issues:16Issues:4

pewapt101

Professionally Evil Web Application Penetration Testing 101

firebaseExploiter

FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily built for mass hunting bug bounties and for penetration testing.

Language:GoLicense:MITStargazers:140Issues:2Issues:0

web-cve-tests

A simple framework for sending test payloads for known web CVEs.

Language:PythonStargazers:130Issues:20Issues:0

FastDork

⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...

Language:JavaScriptLicense:MITStargazers:121Issues:1Issues:1

enumerepo

List all public repositories for (valid) GitHub usernames

Language:GoLicense:MITStargazers:64Issues:3Issues:0

brute53

A tool to bruteforce nameservers when working with subdomain delegations to AWS.

0e.vc

a shared short domain for XSS and other hacks

Language:PHPLicense:MITStargazers:27Issues:4Issues:0

h1reports

A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository

Language:PythonLicense:MITStargazers:16Issues:1Issues:1

hasqlator-mysql

Hasqlator is a haskell sql generator library

Language:HaskellLicense:BSD-3-ClauseStargazers:3Issues:0Issues:0