ariesike

ariesike's starred repositories

gf

A wrapper around grep, to help you grep for things

Language:GoMIT173000

apkleaks

Scanning APK file for URIs, endpoints & secrets.

Language:PythonApache-2.0477600

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

Language:GoMIT278900

interactsh

An OOB interaction gathering server and client library

Language:GoMIT323800

naabu

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

Language:GoMIT450500

subfinder

Fast passive subdomain enumeration tool.

Language:GoMIT975100

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Language:GoMIT1871400

httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Language:GoMIT726700

waybackurls

Fetch all the URLs that the Wayback Machine knows about for a domain

Language:Go332800

wordlistgen

Quickly generate context-specific wordlists for content discovery from lists of URLs or paths

Language:Go21100

CVE-2022-1388

CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE

Language:Python8700

grpool

Lightweight Goroutine pool

Language:GoMIT74100

✨ #PTerm is a modern Go module to easily beautify console output. Featuring charts, progressbars, tables, trees, text input, select menus and much more 🚀 It's completely configurable and 100% cross-platform compatible.

Language:GoMIT470100

smartcheck

SmartCheck – a static analysis tool that detects vulnerabilities and bugs in Solidity programs (Ethereum-based smart contracts).

Language:HTMLGPL-3.035900

martian

Martian is a library for building custom HTTP/S proxies

Language:GoApache-2.0198300

package-analysis

Open Source Package Analysis

Language:GoApache-2.071800

warpgate

Smart SSH, HTTPS and MySQL bastion that requires no additional client-side software

Language:RustApache-2.0362900

cve

Gather and update all available and newest CVEs with their PoC.

Language:HTMLMIT633800

purple-team-exercise-framework

Purple Team Exercise Framework

MIT56700

spring4shell-scan

A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities

Language:PythonMIT65500

SecretScanner

:unlock: :unlock: Find secrets and passwords in container images and file systems :unlock: :unlock:

Language:GoMIT301900

auth_analyzer

Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.

Language:JavaMIT18200

ecapture

Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.

Language:CApache-2.0913300

cariddi

Take a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more

Language:GoGPL-3.0145700

dog

A command-line DNS client.

Language:RustEUPL-1.2600400

hoppscotch

Open source API development ecosystem - https://hoppscotch.io (open-source alternative to Postman, Insomnia)

Language:TypeScriptMIT6274100

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Language:PythonNOASSERTION858100

Web-Attack-Cheat-Sheet

Web Attack Cheat Sheet

411100

go-pretty

Table-writer and more in golang!

Language:GoMIT275900

splunk_pentest_cheatsheet

1100