Baiju Abraham's repositories
nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
inql
InQL - A Burp Extension for GraphQL Security Testing
sanity-gatsby-blog
Blog with Gatsby
-img-src-x-onerror-alert-6-
"><img src=x onerror=alert('6');>
calexe
Calendar Exploit.
secretz
secretz, minimizing the large attack surface of Travis CI
TravisLeaks
A tool to find sensitive keys and passwords in Travis logs
SSRFmap
Automatic SSRF fuzzer and exploitation tool
cansina
Web Content Discovery Tool
keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Atlas
Quick SQLMap Tamper Suggester
chomp-scan
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
GCPBucketBrute
A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
awesome-web-security
🐶 A curated list of Web Security materials and resources.
LeakLooker
Find open databases with Shodan
ghhdb-Github-Hacking-Database
Github Hacking Database - My personal collection of Github Dorks to search for Confidential Information (Yes, it's a Github version of Google Dorks)
upload-scanner
HTTP file upload scanner for Burp Proxy
My-Shodan-Scripts
Collection of Scripts for shodan searching stuff.
aquatone
A Tool for Domain Flyovers
recon-my-way
This repository created for personal use and added tools from my latest blog post.
interestingFileScanner
Burp extension
bountydash
BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.
tbhm
The Bug Hunters Methodology
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
CRLF-Injection-Scanner
Command line tool for testing CRLF injection on list of domains.
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools