anshumanbh

followers

following

stars

Organizations

anshumantestorg

BountyMachine

Anshuman Bhartiya's repositories

git-all-secrets

A tool to capture all the git secrets by leveraging multiple open source git searching tools

Language:GoMIT1095 40 37

tko-subs

A tool that can help detect and takeover subdomains with dead DNS records

Language:GoMIT718 28 22

brutesubs

An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker Compose

Language:ShellMIT255 22 18

terraform-burp-collaborator

Terraform configuration to build a Burp Private Collaborator Server

Language:HCL28 20

LinkFinder

A python script that finds endpoints in JavaScript files

Language:PythonMIT500

semgrep-rules-poc

Language:Python2 20

waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain

Language:Go2 20

action-builder

A collection of GitHub Actions that can be used to automate the testing, building, and deployment of custom GitHub Actions using workflows

Language:MakefileMIT100

Amass

In-depth DNS Enumeration and Network Mapping

Language:GoNOASSERTION1 20

django-DefectDojo

DefectDojo is a DevSecOps and vulnerability management tool.

BSD-3-Clause100

goaltdns

A permutation generation tool written in golang

Language:GoMIT1 20

sast-code-repo-poc

Language:HCL1 20

SonarSearch

A MongoDB importer and API for Project Sonars DNS datasets

Language:Go1 10

wfuzz

Web application fuzzer

Language:PythonGPL-2.01 20

about

A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!

020

action1

Language:DockerfileMIT020

argo-cron

argo-cron

Language:ShellMIT000

charts

Curated applications for Kubernetes

Language:GoApache-2.0010

Drupalgeddon2

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

Language:Ruby000

example-gcloud

An example workflow, using the GitHub Action, to deploy a static website to an existing Google Kubernetes Engine Cluster

Language:HCLCC0-1.0000

gobuster

Directory/file & DNS busting tool written in Go

Language:GoApache-2.0020

goGetBucket

A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.

Language:GoGPL-3.0020

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT000

repo-supervisor

Scan your code for security misconfiguration, search for passwords and secrets. :mag:

Language:JavaScriptMIT000

serverless_toolkit

A collection of useful Serverless functions I use when pentesting

Language:JavaScript000

snallygaster

Tool to scan for secret files on HTTP servers

Language:PythonCC0-1.0020

spicesandmix

Spices and Mix Website

Language:HTML020

SSRFmap

Automatic SSRF fuzzer and exploitation tool

Language:PythonMIT020

subfinder

SubFinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.

Language:GoMIT020

WAScan

WAScan - Web Application Scanner

Language:PythonGPL-3.0020