DarkStar's repositories
a-full-list-of-wordlists
this contain the burp pack
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
assetfinder
Find domains and subdomains related to a given domain
Awesome-Hacking-Resources
A collection of hacking / penetration testing resources to make you better!
bbtools
basic bbtools , buggy , not recommended to use
Bug-Bounty
Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More
FinalRecon
The Last Web Recon Tool You'll Need
fuxploider
File upload vulnerability scanner and exploitation tool.
fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
hakrevdns
Small, fast tool for performing reverse DNS lookups en masse.
httprobe
Take a list of domains and probe for working HTTP and HTTPS servers
impacket
Impacket is a collection of Python classes for working with network protocols.
meg
Fetch many paths for many hosts - without killing the hosts
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
PENTESTING-BIBLE
Learn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
PenTestPayLoads
This repo consists of comphrensive collection of payloads need to do penteration testing of an webapp.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Storm-Breaker
Tool social engineering [Access Webcam & Microphone & Os Password Grabber & Location Finder] With Ngrok
subfinder
Subfinder is a subdomain discovery tool that discovers valid subdomains for websites. Designed as a passive framework to be useful for bug bounties and safe for penetration testing.
waybackurls
Fetch all the URLs that the Wayback Machine knows about for a domain
webshell
This is a webshell open source project
webshells
Various webshells. We accept pull requests for additions to this collection.
XSStrike
Most advanced XSS scanner.