Marcos Medeiros's repositories
airixss
Finding XSS during recon
assetfinder
Find domains and subdomains related to a given domain
bhedak
A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
burnrecon
is a tool to automate and organize reconnaissance operations.
CorsMe
Cross Origin Resource Sharing MisConfiguration Scanner
CVWA
Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a vulnerable web application to practice security testing and improve your learning in AppSec..
cyber-whitepapers
List of whitepapers and documents on cyber security.
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
firmware-presets
Configuration Snippets for the Betaflight Flight Controller Firmware
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
gotator
Gotator is a tool to generate DNS wordlists through permutations.
hacks
A collection of hacks and one-off scripts
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
iac-modulo-aws-ecs
Modulo de terraform para o ECS da AWS
Jeeves
Jeeves SQLI Finder
KingOfBugBountyTips
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
qsreplace
Accept URLs on stdin, replace all query string values with a user-supplied value
RedTeamPowershellScripts
Various PowerShell scripts that may be useful during red team exercise
shadow-recon
Automated Recon for Pentesting & Bug Bounty
SourceWolf
Amazingly fast response crawler to find juicy stuff in the source code! 😎🔥
uncover
Quickly discover exposed hosts on the internet using multiple search engine.