Scripted Local Linux Enumeration & Privilege Escalation Checks

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Linux privilege escalation auditing tool

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Git All the Payloads! A collection of web attack payloads.

Rockyou for web fuzzing

A simple script just made for self use for bypassing 403

An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects

This script grab public report from hacker one and make some folders with poc videos

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

TOP All bugbounty pentesting CVE-2023- POC Exp RCE example payload Things

Bug Bounty ~ Awesomes | Books | Cheatsheets | Checklists | Tools | Wordlists | More

Collection of notes to prepare for the eLearnSecurity eJPT certification exam.

This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filter everything accordingly.

bash scripting thing!

Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSRF

Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)

This is where I share code/material shown in my videos

KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Ports.

a small project to combine linkfinder with the waybackmachine.