Saumadip Mandal's repositories
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
awesome-bugbounty-tools
A curated list of various bug bounty tools
awesome-hacker-search-engines
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more
BlackStone
Pentesting Reporting Tool
Bug-Bounty-Methodology
These are my checklists which I use during my hunting.
can-i-take-over-xyz
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
CRLF-Injection-Payloads
Payloads for CRLF Injection
GCP
Kali linux on GCP
google-dorks
Useful Google Dorks for WebSecurity and Bug Bounty
HackBar
HackBar is a security audit tool that will enable you to pentest websites more easily. ... You can use it to check site security by performing SQL injections, XSS holes and more. It also has a user-friendly interface that makes it easy for you to do fuzz testing, hash generation, encoding and more.
learn365
This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection
MagiskOnWSALocal
Integrate Magisk root and Google Apps into WSA (Windows Subsystem for Android)
OneForAll
OneForAll是一款功能强大的子域收集工具
ParamSpider
Mining parameters from dark corners of Web Archives
Pentest
Notes/Tools for pentesting
recon_methodology
recon from myerspective
socialhunter
crawls the website and finds broken social media links that can be hijacked
starship
☄🌌️ The minimal, blazing-fast, and infinitely customizable prompt for any shell!
static-binaries
Various *nix tools built as statically-linked binaries
unwanted-scripts
some unusual scripts i write
Villain
Villain is a Windows & Linux backdoor generator and multi-session handler that allows users to connect with sibling servers (other machines running Villain) and share their backdoor sessions, handy for working as a team.
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档