Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

🎯 SQL Injection Payload List

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

Notes about attacking Jenkins servers

Utilities for ESLint plugins and custom rules.

List of special metadata IPs used in cloud services

WeblogicScanLot系列，Weblogic漏洞批量检测工具，V2.2

Burp Suite extension to discover assets from HTTP response.

Scan secrets from Continuous Integration Build Logs

A playground to practice SSRF Attacks against web apps

Sub-Domain TakeOver Vulnerability Scanner

Takes ip range, Scan all open SSL Certs, Grab Cnames

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

Exploit written in Python for CVE-2018-15473 with threading and export formats

Python script to check HTTP security headers

Reporting Tips for Penetration Testers

A collection of hacking / penetration testing resources to make you better!

Hostile Subdomain Takeover tool written in Go

A tool that can help detect and takeover subdomains with dead DNS records

Toolset for detecting reflected xss in websites

Privilege Escalation Project - Windows / Linux / Mac

A collection of hacks and one-off scripts

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Temporary repository used for prototyping the core framework.

List of XSS Vectors/Payloads

The Swiss Army knife for 802.11, BLE and Ethernet networks reconnaissance and attacks.