Ankush Bhaal's repositories
awesome-bugbounty-builder
Awesome Bug bounty builder Project
awesome-api-security
A collection of awesome API Security tools and resources.
Bug-Bounty-Methodology
These are my checklists which I use during my hunting.
cli
Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
devsecops-lab
Demo files
DevSecOps-project
DevSecOps Project using git, GitHub, jenkins, Maven,Junit, SonarQube, Docker, Trivy, Hashicorp Vault, AWS, Kubernetes
fuzzuli
fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
github-dorks
Find leaked secrets via github search
ios-resources
Useful resources for iOS hacking
JavaVulnerableLab
Vulnerable Java based Web Application
metlo
Metlo is an open-source API security platform.
My-Hunting-Methodology-
My Private Bug Hunting Methodology
Offensive-Pentesting-Web
A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed as a quick reference cheat sheet for your pentesting and bug bounty engagement.
ReconHunter
Red Team Mind Map
secureum-mind_map
This repo is less actively maintained now but I still monitor it for PR's.
smartbugs
SmartBugs: A Framework to Analyze Ethereum Smart Contracts
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
webapp-wordlists
This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contains a wordlist of all the files directories for this version.
XSSFire
A standalone Blind XSS Script.
xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!