raytheon's repositories
algoexpert-data-structures-algorithms
A collection of solutions for all problem statements on the AlgoExpert Coding Interview platform.
awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
BugBountyHuntingScripts
I built some bash functions to help me while doing mundane and repetitive tasks using BBRF, Nuclei or other Bug bounty tool.
CVE-2021-44228-Apache-Log4j-Rce
Apache Log4j 远程代码执行
dateGenerator
Used to create range of date, could be usefull to create wordlist base on dates.
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
disable-flutter-tls-verification
A Frida script that disables Flutter's TLS verification
Goby
Attack surface mapping
gofetch
This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com
HackBrowserData
Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。
Hello-World
Config files for my GitHub profile.
JNDIExploit
A malicious LDAP server for JNDI injection attacks
jsleak
jsleak is a tool to find secret , paths or links in the source code during the recon.
karma_v2
⡷⠂𝚔𝚊𝚛𝚖𝚊 𝚟𝟸⠐⢾ is a Passive Open Source Intelligence (OSINT) Automated Reconnaissance (framework)
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
monkey
Infection Monkey - An automated pentest tool
oneliner-bugbounty
oneliner commands for bug bounties
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
scrapts
Scrapts Scrapts Scrapts
shuji
Reverse engineering JavaScript and CSS sources from sourcemaps
traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
trivy
Scanner for vulnerabilities in container images, file systems, and Git repositories, as well as for configuration issues and hard-coded secrets
waybackurlsbash
crawling urls for targets from wayback implementation in bash.
webshell
This is a webshell open source project