h4ckdi's repositories
git-dumper
A tool to dump a git repository from a website
QuickXSS
Automating XSS using Bash
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
tig
Text-mode interface for git
dirsearch
Web path scanner
Automated-Scanner
Trying to make automated recon for bug bounties
nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
cupp
Common User Passwords Profiler (CUPP)
github-dorks
Find leaked secrets via github search
reconness
ReconNess is a platform to allow continuous recon (CR) where you can set up a pipeline of #recon tools (Agents) and trigger it base on schedule or events.
Rekon
The project contains multiple shell scripts for automating the tasks during recon.
svn-extractor
simple script to extract all web resources by means of .SVN folder exposed over network.
CMSeeK
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
OpenRedireX
A Fuzzer for OpenRedirect issues
brutespray
Brute-Forcing from Nmap output - Automatically attempts default creds on found services.
gitGraber
gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
bugbounty-cheatsheet
A list of interesting payloads, tips and tricks for bug bounty hunters.
subjack
Subdomain Takeover tool written in Go
Oralyzer
Open Redirection Analyzer
SubOver
A Powerful Subdomain Takeover Tool
KnockV3
Python Subdomain Scan (knockpy) in Python3
gitrob
Reconnaissance tool for GitHub organizations
dnmasscan
A script that can resolve an input file of domains and scan them with masscan
Open-Redirect-Payloads
Open Redirect Payloads
weevely3
Weaponized web shell
AutoRecon
Simple shell script for automated domain recognition with some tools
axiom
A dynamic infrastructure toolkit for red teamers and bug bounty hunters!
PwnFox
PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.