Zaid Bhat's repositories
web-methodology
Methodology for high-quality web application security testing - https://github.com/tprynn/web-methodology/wiki
APKLab
Android Reverse Engineering WorkBench for VS Code
Awesome-Bugbounty-Writeups
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
awesome-oneliner-bugbounty
A collection of awesome one-liner scripts especially for bug bounty tips.
CeWL
CeWL is a Custom Word List Generator
Ciphey
Automated decryption tool
cloudsploit
Cloud Security Posture Management (CSPM)
cs-suite
Cloud Security Suite - One stop tool for auditing the security posture of AWS/GCP/Azure infrastructure.
dalfox
🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
dep-scan
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, Google CloudBuild. No server required!
Hack-Tools
The all-in-one Red Team extension for Web Pentester 🛠
horuz
Keep an eye of your fuzzing. CLI to interact with ElasticSearch.
idor_explorer
Collection of automated tools to aid in IDOR exploration
joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript based on code property graphs
LemonBooster-v2
Reestructured LemonBooster.
OpenRedireX
A Fuzzer for OpenRedirect issues
OSSGadget
Collection of tools for analyzing open source packages.
p0wny-shell
Single-file PHP shell
Parth
Heuristic Vulnerable Parameter Scanner
PhreeBooksERP5.2.3-RCE
PhreeBooks ERP 5.2.3 Remote Code Execution due to authenticated unrestricted file upload
pkexec-exploit
pwnkit: Local Privilege Escalation in polkit's pkexec (CVE-2021-4034)
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities
security-champion-framework
The Security Champion Framework provides both a measuring stick and a roadmap generator for Champion Programs.
threatcl
Documenting your Threat Models with HCL
uro
declutters url lists for crawling/pentesting