mubarak arzika's repositories
Admin-Scanner
This tool is to design to find admin panel of websites
awesome-bugbounty-tools
A curated list of various bug bounty tools
commix
Automated All-in-One OS command injection and exploitation tool.
CVE-2020-14882
CVE-2020–14882、CVE-2020–14883
diodb
Open-source vulnerability disclosure and bug bounty program database.
fastjson_rce_tool
fastjson命令执行自动化利用工具, remote code execute,JNDI服务利用工具 RMI/LDAP
FavFreak
Making Favicon.ico based Recon Great again !
HawkScan
Security Tool for Reconnaissance and Information Gathering on a website. (python 2.x & 3.x)
javasec
自己学习java安全的一些总结,主要是安全审计相关
jsmon
a javascript change monitoring tool for bugbounties
kerbrute
A tool to perform Kerberos pre-auth bruteforcing
log4j-scan
A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228
pd-actions
Continuous recon and vulnerability assessment using Github Actions.
pentest-tools
Custom pentesting tools
phpunit-brute
Tool to try multiple paths for PHPunit RCE CVE-2017-9841
PPScan
Client Side Prototype Pollution Scanner
rengine
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
s3brute
s3 brute force tool
S3Scanner
Scan for open AWS S3 buckets and dump the contents
semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
semgrep-rules
Semgrep rules registry
ssh-audit
SSH server & client auditing (banner, key exchange, encryption, mac, compression, compatibility, security, etc)
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
subdover
Subdover is a MultiThreaded Subdomain Takeover Vulnerability Scanner Written In Python3
subjack
Subdomain Takeover tool written in Go
telegram-bot-api
Golang bindings for the Telegram Bot API
tko-subs
A tool that can help detect and takeover subdomains with dead DNS records
wordpress-plugin-list
Wordpress Plugins List for Bruteforcing.