mateofumis

Mateo Fumis (hackermater)'s starred repositories

Directory-Traversal-Payloads

List of Directory Traversal/LFI Payloads Scraped from the Internet

APKDeepLens

Android security insights in full spectrum.

Language:PythonMIT44100

PlaystoreDownloader

A command line tool to download Android applications directly from the Google Play Store by specifying their package name (an initial one-time configuration is required)

Language:PythonMIT112600

Bug_Bounty_Web_and_API_Tools

Bug Bounty Web and API Payloads

Language:Python900

IPFuscator

IPFuscator - A tool to automatically generate alternative IP representations

Language:HTMLMIT32900

public-pentesting-reports

A list of public penetration test reports published by several consulting firms and academic security groups.

Language:HTML822000

RustScan

🤖 The Modern Port Scanner 🤖

Language:RustGPL-3.01336500

PWAsForFirefox

A tool to install, manage and use Progressive Web Apps (PWAs) in Mozilla Firefox

Language:JavaScriptMPL-2.0207700

BlackStone

Pentesting Reporting Tool

Language:CSS43600

SEPunycoder.py

A simple script to convert normal-text to Cyrillic-text. This allows hackers to obfuscate text in puny-code format which can lead into a lot of multiple Phishing attacks.

Language:PythonMIT100

reflector

Burp plugin able to find reflected XSS on page in real-time while browsing on site

Language:Java109900

getJS

A tool to fastly get all javascript sources/files

Language:GoMIT64300

waymore

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Language:PythonMIT155900

403jump

HTTP 403 bypass tool

Language:GoMIT40000

xnLinkFinder

A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target

Language:Python113800

PPScan

Client Side Prototype Pollution Scanner

Language:JavaScriptMIT50000

xss-payload-list

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

MIT590900

GoTelegramRAT

Language:GoGPL-3.0200

Impersonator

Simply tool for impersonate user tokens

Language:C++100

Android-Pentesting-Scripts

Simple Bash scripts to make easier Android hacking (mobile pentesting).

Language:ShellMIT100

MobileApp-Pentest-Cheatsheet

The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.

447100

XUnifedParams.py

Python script for Unify all Parameters with all URLs.

Language:PythonMIT100

Gf-Patterns

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

MIT114700

SSRFmap

Automatic SSRF fuzzer and exploitation tool

Language:PythonMIT285400

Injectus

CRLF and open redirect fuzzer

Language:PythonGPL-3.010800

inql

InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.

Language:PythonApache-2.0149600

bypass-url-parser

Language:PythonAGPL-3.096400

torctl

Script to redirect all traffic through tor network including dns queries for anonymizing entire system

Language:ShellGPL-3.015500

Tiny-XSS-Payloads

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

Language:JavaScript187400

SploitScan

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Language:PythonGPL-3.085000