guleum-zone's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
Arjun
HTTP parameter discovery suite.
awesome-api-security
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
awesome-bugbounty-tools
A curated list of various bug bounty tools
AWSome-Pentesting
My cheatsheet notes to pentest AWS infrastructure
BITB
Browser In The Browser (BITB) Templates
Burp-Suite-Certified-Practitioner-Exam-Study
Burp Suite Certified Practitioner Exam Study
CEH
Study notes for the Certified Ethical Hacker v12.
Ciphey
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
cloudfox
Automating situational awareness for cloud penetration tests.
ffuf
Fast web fuzzer written in Go
freq
This is go CLI tool for send fast Multiple get HTTP request.
fuzz.txt
Potentially dangerous files
gf
A wrapper around grep, to help you grep for things
Gf-Patterns
GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
gospider
Gospider - Fast web spider written in Go
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
kr-redteam-playbook
오펜시브 시큐리티 TTP, 정보, 그리고 대응 방안을 분석하고 공유하는 프로젝트입니다. 정보보안 업계 종사자들과 학생들에게 도움이 되었으면 좋겠습니다.
Mind-Maps
Mind-Maps of Several Things
oneliner-bugbounty
oneliner commands for bug bounties
OneListForAll
Rockyou for web fuzzing
OpenRedireX
A Fuzzer for OpenRedirect issues
postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
theHarvester
E-mails, subdomains and names Harvester - OSINT
uro
declutters url lists for crawling/pentesting
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
web-ctf-labs
My CTFs
xnLinkFinder
A python tool used to discover endpoints (and potential parameters) for a given target