h4rsh4d

SSTI

SSTI TestBed

Wordlist

Wordlist for Bug Hunters

Links-Crawler

Simple web crawler to crawl website and organise URLs based on page extensions.

Android-Testing

ATSCAN

Advanced Search & Mass Exploit Scanner- فاحص متقدم لبحث و استغلال الثغرات بالجملة

Awesome-WAF

🔥 Everything awesome about web-application firewalls (WAF).

bbht

A script to set up a quick Ubuntu 17.10 x64 box with tools I use.

big-list-of-naughty-strings

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Bug-Bounty-Roadmaps

Bug Bounty Roadmaps

Chrome-URI-Schemes

Combined-Wordlists

A combined wordlists for files and directory discovery

DSXS

Damn Small XSS Scanner

ElectronJS_Security

h4rsh4d.github.io

Website

HTB-Writeups

igoturls

WaybackURLS + OtxURLS + CommonCrawl = The Best Results

jq-parser-cheat-sheet

jsearch

kubebot

A security testing Slackbot built with a Kubernetes backend on the Google Cloud Platform

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

MacSymbolicator

Symbolicating macOS/iOS crash reports, easily.

nuclei-templates

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

UsefulScripts

XRCross

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

YourNextBugTip

Collection of Twitter Bug Bounty Tips and Tricks