El Mehdi 's starred repositories
osint_stuff_tool_collection
A collection of several hundred online tools for OSINT
awesome-bugbounty-tools
A curated list of various bug bounty tools
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
bounty-targets-data
This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports
xsshunter-express
An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!
bug-bounty-dorks
List of Google Dorks for sites that have responsible disclosure program / bug bounty program
filterbypass
Browser's XSS Filter Bypass Cheat Sheet
postMessage-tracker
A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon
Nuclei-Templates-Collection
Nuclei Templates Collection
cookiemonster
🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
http-garden
Differential testing and fuzzing of HTTP servers and proxies
leakScraper
LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to their target.
cssInjection
Stealing CSRF tokens with CSS injection (without iFrames)
RepeaterSearch
This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response matches a query via simple text matching or Regex.
trickest-cli
Execute Trickest workflows right from your terminal
DOMClobbering
DOM Clobbering Wiki, Browser Testing, and Payload Generation