Kirill Zhdanov's repositories
web-developer-toolkit
WORK IN PROGRESS Collection of handy tools for daily work of front end developer and QA engineer. Related article I wrote about https://dev.to/storenth/puppeteer-mocha-upgrade-your-implementation-code-with-coverage-22
action-full-scan
A GitHub Action for running the OWASP ZAP Full scan
assetfinder
Find domains and subdomains related to a given domain
AutoRecon
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Awesome-WAF
π₯ Everything about web-application firewalls (WAF).
dnsx
dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.
fff
The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.
ffuf
Fast web fuzzer written in Go
gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
GitDorker
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
HostHunter
HostHunter a recon tool for discovering hostnames using OSINT techniques.
httpx
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
hugo-8bits-theme
Hugo 8-bits Theme
interactsh-web
Web Client for Interactsh
Iris-JS
#JavascriptRecon #bugbounty
mapcidr
Small utility program to perform multiple operations for a given subnet/CIDR ranges.
masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
massdns
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
mochaTddDemo
Unit Testing with Mocha. JS classic problem solving with TDD using best practice.
notify
Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
puredns
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
RandomScripts
Random Shell Scripts and other ideas I have along the way
shuffledns
MassDNS wrapper written in go that allows you to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard handling and easy input-output support.
Silver
Mass scan IPs for vulnerable services
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
x8
Hidden parameters discovery suite