netwons's repositories
netwons_backup
Scans backup folders on target sites. Searches archived files in the folders it finds.
Web-Security-Learning
Web-Security-Learning
Bug-Bounty
Here Are Some Collected resource from twitter
chaos-client
Go client to communicate with Chaos DNS API.
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
Frog-checkCDN
批量检查目标是否为cdn
google-dorks
Useful Google Dorks for WebSecurity and Bug Bounty
IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
ipcdn
Check which CDN providers an IP list belongs to
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Nemesis
recon
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
OneListForAll-fuzzer.sh
Rockyou for web fuzzing
Parameter-Reflect-Finder
Parameter-Reflect-Finder is a python based tool that helps you find reflected parameters which can have potential XSS or Open redirection vulnerabilities.
ppmap
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
reverse-proxy
Configuring NGINX as Reverse Proxy
sub.sh
Multiprocessing(Parallel)Subdomain Detect Script
the-nuclei-templates
Nuclei templates written by us.
tool-pentest
This is an open source repo. Anyone can contribute
WAF-bypass-XSS-payloads
XSS payloads for bypassing WAF. This repository is updating continuously.
wordlists
Real-world infosec wordlists, updated regularly