Rajaneesh's repositories
Findomain
The fastest and cross-platform subdomain enumerator, do not waste your time.
Awesome-WAF
🔥 Everything you'll need to know about web-application firewalls (WAF).
Sublist3r
Fast subdomains enumeration tool for penetration testers
clickjackingpoc
A Proof of Concept for Clickjacking Attacks
frida-ios-dump
pull decrypted ipa from jailbreak device
bbht
A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
Vulnhub-CTF-Writeups
This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.
frida
Clone this repo to build Frida
jadx
Dex to Java decompiler
hackerone-reports
Top disclosed reports from HackerOne
broken-link-checker
Find broken links, missing images, etc within your HTML.
ADLab
Active Directory Lab for Penetration Testing
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
clickjack
Web based clickjack poc creator tool in python
Keychain-Dumper
A tool to check which keychain items are available to an attacker once an iOS device has been jailbroken
InjuredAndroid
A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.
objection
📱 objection - runtime mobile exploration
Penetration-Testing
List of awesome penetration testing resources, tools and other shiny things
GitMiner
Tool for advanced mining for content on Github
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
JSONBee
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
terragoat
TerraGoat is Bridgecrew's "Vulnerable by Design" Terraform repository. TerraGoat is a learning and training project that demonstrates how common configuration errors can find their way into production cloud environments.
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
WebGoat
WebGoat is a deliberately insecure application
semgrep
Fast and syntax-aware semantic code pattern search for many languages: like grep but for code
deobfuscator
The real deal
IoT-PT
A Virtual environment to Pentest IoT Devices
openvas-docker
A Docker container for Openvas
csf
ArmourBird CSF - Container Security Framework