cmscardoso's repositories
assessment-mindset
Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.
BB-datas
Tools and datas related to bug bounty programs.
bounty-targets-data
This repo contains hourly-updated data dumps of Hackerone/Bugcrowd scopes that are eligible for reports
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
cc.py
Extracting URLs of a specific target based on the results of "commoncrawl.org"
certstream-python
Python library for connecting to CertStream
CertStreamMonitor
Monitor certificates generated for specific domain strings and associated, store data into sqlite3 database, alert you when sites come online.
ct-exposer
An OSINT tool that discovers sub-domains by searching Certificate Transparency logs
developer-roadmap
Roadmap to becoming a web developer in 2018
dirhunt
Find web directories without bruteforce
djangohunter
Tool designed to help identify incorrectly configured Django applications that are exposing sensitive information.
fuxploider
File upload vulnerability scanner and exploitation tool.
graph-ql
GraphQL Security Research Material
graphql-ide
⚡️ GraphQL IDE - An extensive IDE for exploring GraphQL API's
hackertarget
🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯
Microsoft-DEV236x-
Introduction to Python Absolute Beginner (Microsoft) on EDX DEV236x : all the practices, and notes with screenshots
Photon
Incredibly fast crawler which extracts urls, emails, files, website accounts and much more.
pureblood
A Penetration Testing Framework created for Hackers / Pentester / Bug Hunter
quick-recon.py
Do some quick reconnaissance on a domain-based web-application
ScreenShooter
Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis
snallygaster
Tool to scan for secret files on HTTP servers
the-art-of-subdomain-enumeration
This repository contains all the supplement material for the book "The art of sub-domain enumeration"
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
web-development-open-source
Monthly Series - Web Development Top 10 Open Source Projects
XSSPayloads
Cross Site Scripting Payloads -- Variations