sumgr0's repositories
Automated-Scanner
Trying to make automated recon for bug bounties
findomain
The fastest and cross-platform subdomain enumerator, don't waste your time.
autochrome
This tool downloads, installs, and configures a shiny new copy of Chromium.
AutoNSE
Massive NSE (Nmap Scripting Engine) AutoSploit and AutoScanner
CCrawlDNS
This small utility retrieves from the CommonCrawl data set unique subdomains for a given domain name.
cname
this tool take a list of subdomain and get cname for every subdomain
Combined-Wordlists
A combined wordlists for files and directory discovery
dotfiles
My .files 🏡
gf
A wrapper around grep, to help you grep for things
github-search
Tools to perform basic search on GitHub.
gobuster
Directory/File, DNS and VHost busting tool written in Go
GoogD0rker
GoogD0rker is a tool for firing off google dorks against a target domain, it is purely for OSINT against a specific target domain. READ the readme before messaging or tweeting me.
gpg-mail-no-drm
Latest version of GPGMail for macOS without DRM.
hacks
Repo of useful scripts
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
LiveTargetsFinder
Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts and gather service information
open-redirect-payload-list
Open Redirect Payload List
pathbrute
Pathbrute
rescope
Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.
slack-remote-terminal
Control remote host via Slack
sn0int
Semi-automatic OSINT framework and package manager
subdom
Subdom: cname finder tool
swamp
An OSINT tool for discovering associated sites through Google Analytics Tracking IDs
tmux-config
Tmux configuration, that supercharges your tmux to build cozy and cool terminal environment
Turbolist3r
Subdomain enumeration tool with analysis features for discovered domains
Wordlists-1
Various Payload wordlists
XSS-Freak
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discover it in seconds.
xss_payloads
Exploitation for XSS