Sahil Tembhare's repositories
bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
awesome-nginx-security
🔥 A curated list of awesome links related to application/API security in NGINX environment.
awesome-ruby-security
Awesome Ruby Security resources
bb-reports-templates
My small collection of reports templates
bugcrowd-levelup-subdomain-enumeration
This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bucrowd LevelUp 2017 virtual conference
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
commonspeak2-wordlists
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
ctf-tools
Some setup scripts for security research tools.
CTFSolutionTypes
A collection of CTF solution types, i.e. not solutions to specific CTF challenges, but the general categories that those solutions fall under. Includes CTF solution categories for web, binary, network, crypto, and others. Please contribute!
DeviseDoor
RoR / Devise PoC in memory Backdoor
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools
github-dorks
Collection of github dorks and helper tool to automate the process of checking dorks
IntruderPayloads
A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
lazyrecon
This script is intended to automate your reconnaissance process in an organized fashion
mywebappscripts
A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
research
Hello and welcome to my GitHub account. If you'd like to know more about me, this is likely the best place to start
SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
security-template
A static website template for security pages.
Security_list
Great security list for fun and profit
SSRFmap
Automatic SSRF fuzzer and exploitation tool
unicode-security-guide
Unicode Security Guide
unix-commands
Some useful UNIX commands
XSS.png
A XSS mind map ;)