slooppe's repositories
AssetViz
AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration testers and bug bounty hunters conducting reconnaissance, AssetViz provides intuitive insights into domain structures for informed decision-making.
attack-navigator
Web app that provides basic navigation and annotation of ATT&CK matrices
awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
crossfeed
External monitoring for organization assets
durl
Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names
excalibur
Pivot from a Twitter profile to Medium, Product Hunt, Mastodon, and more with OSINT
find-s3-account
Sample code for finding AWS Account ID of an S3 bucket.
gal
Get all possible href | src | url from target url or domain
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
github-secrets
This tool analyzes a given Github repository and searches for dangling or force-pushed commits containing potential secret or interesting information.
godeclutter
Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.
GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
gungnir
CT Log Scanner
jsmug
A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
json-cleaner
The utility aims to clean up output generated by popular tools by calculating a hash based on specific JSON values to removing junk data.
Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
OFFAT
The OWASP OFFAT tool autonomously assesses your API for prevalent vulnerabilities, though full compatibility with OAS v3 is pending. The project remains a work in progress, continuously evolving towards completion.
opencti
Open Cyber Threat Intelligence Platform
programs-watcher
A Python script designed to monitor bug bounty programs for any changes and promptly notify users.
rextract
CLI tool that extracts a regex pattern from a list of urls ( Rust )
TokenTactics
Azure JWT Token Manipulation Toolset
toxicache
Go scanner to find web cache poisoning vulnerabilities in a list of URLs
uddup
Urls de-duplication tool for better recon.
unew
A tool for append URLs, skipping duplicates & combine parameters.
uniqurl
Use uniqurl to filter only unique content from a list of URLs with stdin, making it usable within piped commands
waymore
Find way more from the Wayback Machine!
xurls
Extract urls from text