designerscoders

followers

following

stars

Mohammad Mukarram's starred repositories

XSS

Apache-2.06400

OversecuredVulnerableiOSApp

Oversecured Vulnerable iOS App

Language:SwiftBSD-2-Clause20900

MXS

A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.

Language:Python12500

certainly

Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scenarios.

Language:GoMIT10100

weapons4pentester

:hocho: this repo contains required files for web application pentests

Language:ASP17800

xss_vibes

A modern tool written in Python that automates your xss findings.

Language:Python34800

BugBountyLearningResources

Bug Bounty Learning Resources i mentioned on My Blog at http://whoami.securitybreached.org/

800

ParamEnumerator

Hunts for params.

Language:Rust100

PizzaHunt

Scans for indications of an XSS, Oracle SQLi and filters out words containing MySQL.

Language:RustUnlicense2800

XSS-Automation

Language:Shell9000

sqli-dojo-docker

A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment

Language:PHPGPL-3.03600

CRLFsuite

The most powerful CRLF injection (HTTP Response Splitting) scanner.

Language:PythonMIT54200

cero

Scrape domain names from SSL certificates of arbitrary hosts

Language:GoMIT59400

eventlistener-xss-recon

google-dorks-bug-bounty

A list of Google Dorks for Bug Bounty, Web Application Security, and Pentesting

MIT89200

css-scrollbar-attack

PoC for leaking text nodes via CSS injection

Language:JavaScript1500

nuclei-templates

Language:Python9700

web-check

🕵️‍♂️ All-in-one OSINT tool for analysing any website

Language:TypeScriptMIT2173400

apidetector

APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and flexible input/output options. Ideal for API security testing.

Language:PythonMIT29400

XSS-Bypass-Filters

EvenBetter

EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎

Language:TypeScript12200

Priv8-Nuclei-Templates

My Priv8 Nuclei Templates

awesome-web-hacking

A list of web application security

MIT571700

bbrf-client

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Language:PythonMIT60600

BSQLi

timebased blind sqli with 99% success rate

Language:Python13200

gungnir

CT Log Scanner

Language:GoMIT24000

back-me-up

This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filter everything accordingly.

Language:ShellMIT14300

NucleiScanner

NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications

Language:ShellGPL-3.029400

bbrf-server

The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices

Language:Shell28600

Path-Traversal-Scanner

Language:PythonMIT2600