🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓

⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐

⭐ ⭐ Use ML to classify flows and packets as benign or malicious. ⭐ ⭐

Little Bug Bounty & Hacking Tools⚔️

Generate tens of thousands of subdomain combinations in a matter of seconds

Filter and enrich a list of subdomains by level

A Target Tracking , NoteTaking , CheckLists and Data Management GUI App for Bug Hunter's and Pentesters.

A high-performance tool for identifying domain takeovers with support for custom fingerprints and resolver lists.

Simply output a random user-agent. Use it with tools that don't have a --random-agent flag. Like `random-agent` or $(random-agent)

Tool to analyze and troubleshoot TLS connections (app/lib/api)

Filter list of subdomains by level.

Shieldsup Scanner is a robust vulnerability scanner with an integrated bug tracker. It simplifies the tracking and fixing of vulnerabilities across your systems. By combining naabu port scanning and nuclei vulnerability scanning, Shieldsup Scanner identifies more vulnerabilities and covers a broader range of targets than nuclei alone.

The infosec companion for your Corp / Private Squid MitM Proxy (app/lib/api)

generate pf firewall config files from full live asn/bgp routing tables (app/lib/api)

A powerful, fast, and lightweight Go tool for testing HTTP method security across web applications and servers. Detect HTTP Verb Tampering vulnerabilities, dangerous methods, and server misconfigurations with ease.

an advanced EDR evasion framework in Golang

Return geolocation info (country & city) in bulk using MaxMind Lite DB and Gregory Oschwald's geoip2-golang library

A fast, concurrent CLI tool to scan Firebase URLs for vulnerabilities.

Return domain registrar info and resolved IP (or Reverse IP) using WHOIS DB and Li Kexian's whois library

Gatherer 是一个简易的爬虫工具