danzee1's repositories
Magic-CheckList-for-Web-Applications
Web Security Checklist (Bug Bounty & Pentesting)
asset-scan
asset-scan是一款适用甲方企业的外网资产周期性扫描监控系统
chomp-scan
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
SWFPFinder
SWFPFinder - SWF Potential Parameters Finder
rapidscan
:santa: The Multi-Tool Web Vulnerability Scanner.
Hacking-with-Go
Golang for Security Professionals
xssor2
XSS'OR - Hack with JavaScript.
wordlistgen
Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
Shiro_exploit
Apache Shiro 反序列化漏洞检测与利用工具
SSRFmap
Automatic SSRF fuzzer and exploitation tool
fortify-license-crack
fortify-license-crack
sandmap
Nmap on steroids. Simple CLI with the ability to run pure Nmap engine, 31 modules with 459 scan profiles.
autoRecon
This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
NmapAutomator
nmapautomator.sh
goca
Goca Scanner
w9scan
Plug-in type web vulnerability scanner
gitGraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
DeathStar
Automate getting Domain Admin using Empire
QCSuper
QCSuper is a tool communicating with Qualcomm-based phones and modems, allowing to capture raw 2G/3G/4G radio frames, among other things.
spyse.py
Python API wrapper and command-line client for the tools hosted on spyse.com.
burp-to-sqlmap
Performing SQLInjection test on Burp Suite Bulk Requests using SQLMap
Spring-Boot-Actuator-Exploit
Spring Boot Actuator (jolokia) XXE/RCE
shodan-filters
A list of shodan filters
commonspeak2-wordlists
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
hawkeye
Hawkeye filesystem analysis tool
pentest-management
Simple webinterface combining different recon tools.