coboleng's repositories
LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
oscp-pre-preparation-plan-and-notes
My OSCP Pre-Preparation Phase. I'm not sure if I'll be able to afford the exam but what count's trying and learning things. I'm gonna give it a try. [Start Date: 21st March 2022]
blind-sql-error-based
blind sql injection error based script for infering an admin password
blindsqlinection
a script for bruteforcing password from the DB using blind SQL injection vuln in the cookie value
blackbird
An OSINT tool to search for accounts by username in social networks.
tbhm
The Bug Hunters Methodology
Affinis
Recurrent Neural Network SubDomain Discovery Tool
hijagger
Checks all maintainers of all NPM and Pypi packages for hijackable packages through domain re-registration
cli
Official Command Line Interface for the IPinfo API (IP geolocation and other types of IP data)
OneListForAll
Rockyou for web fuzzing
xnLinkFinder
A python tool used to discover endpoints for a given target
waymore
Find way more from the Wayback Machine!
arsenal
Arsenal is just a quick inventory and launcher for hacking programs
RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
metabigor
Intelligence tool but without API key
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
httpx
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
interactsh
An OOB interaction gathering server and client library
dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
smuggler
Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
MemLabs
Educational, CTF-styled labs for individuals interested in Memory Forensics
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework