bacchus19408's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
Amass
In-depth Attack Surface Mapping and Asset Discovery
BerylEnigma
ffffffff0x team toolset for penetration testing, cryptography research, CTF and daily use. | ffffffff0x 团队工具集,用来进行渗透测试,密码学研究,CTF和日常使用。
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
BugBountyReportTemplates
List of reporting templates I have used since I started doing BBH.
CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
D4N155
OWASP D4N155 - Intelligent and dynamic wordlist using OSINT
dirsearch
Web path scanner
dnsgen
Generates combination of domain names from the provided input.
ffuf
Fast web fuzzer written in Go
fsociety
fsociety Hacking Tools Pack – A Penetration Testing Framework
httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
LFI-FINDER
LFI-FINDER is an open-source tool available on GitHub that focuses on detecting Local File Inclusion (LFI) vulnerabilities
LinkFinder
A python script that finds endpoints in JavaScript files
NetRadar
NetRadar is a Networking tool focused on mapping local and WiFi networks. It provides detailed information about connected devices, open ports, servers and automated scans for WiFi networks.NetRadar es una herramienta de Networking centrada en el mapeo de redes locales y WiFi. Proporciona información detallada sobre dispositivos conectados, puert..
Offensive-Hacking-Unfolded---Become-a-Pro-Pentester
Offensive Hacking Unfolded - Become a Pro Pentester, by Packt Publishing
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PENTESTING-BIBLE
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
puff
Clientside vulnerability / reflected xss fuzzer
RansomLord
RansomLord is a proof-of-concept Anti-Ransomware exploitation tool that automates the creation of PE files, used to compromise Ransomware pre-encryption.
Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
secretsdump.py
Enhanced version of secretsdump.py from Impacket. Adds multi-threading and accepts an input file with a list of target hosts for simultaneous secrets extraction.
vulscan
Advanced vulnerability scanning with Nmap NSE
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
xorshell
Encoder PHP webshell to bypass WAF using XOR operations.
xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List