haka110's repositories
CloakQuest3r
Uncover the true IP address of websites safeguarded by Cloudflare & Others
Awesome-FOFA
The FOFA Library collects usage tips, common scenarios, F&Q, and more for FOFA.
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
Bug-Bounty-Tips-Collection
A collection of Bug Bounty Tips collected from GitHub to all bug bounty hunters
BypassFuzzer
Fuzz 401/403/404 pages for bypasses
cve-2023-50164-poc
Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")
CyberXS
CyberXS is an XSS Vulnerability Automation Tool made with multiple Oneliners
DockerRegistryGrabber
Enumerate / Dump Docker Registry
Dons
Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript of websites. Its vibrant ASCII art logo welcomes users to a journey where it scans, reveals, and safeguards against potential security breaches.
form_finder
This script can be used to find html forms in the list of endpoints/urls.
formcrawler
This script Crawl the website and find the urls that contains html forms.
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
knoxnl
This is a python wrapper around the amazing KNOXSS API by Brute Logic
netlas-cookbook
The goal of this guide is very simple - to teach anyone interested in cyber security, regardless of their knowledge level, how to make the most of Netlas.io.
notify
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.
NucleiScanner
NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications
One-Liner-Collections
This Repositories contains list of One Liners with Descriptions and Installation requirements
One-liner-XSS-Scanner
This is a collection of commands that's help you to find XSS via automation.
reflxss
A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.
reverse
Tools reverse IP/Domain
sicat
The useful exploit finder
SubProber
Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. The tool offers concurrent scanning, allowing users to define their preferred concurrency level for faster results. Whether you are on Linux, Windows, or macos
webcopilot
An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.
x8
Hidden parameters discovery suite