brodieinfosec Goto Github PK

aem-hacker

asnlookup

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

awesome-hacking

A collection of various awesome lists for hackers, pentesters and security researchers

bass

Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers to your "resolver.txt"

bb-reports-templates

My small collection of reports templates

big_xss

This repository is a collection of Awesome XSS Payloads in 1 txt file

bug-bounty-reference

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

bugbounty-cheatsheet

A list of interesting payloads, tips and tricks for bug bounty hunters.

dnsgrep

Quickly Search Large DNS Datasets

ffuf

Fast web fuzzer written in Go

gift

gittools

A repository with 3 tools for pwn'ing websites with .git repositories available

googd0rker

GoogD0rker is a tool for firing off google dorks against a target domain, it is purely for OSINT against a specific target domain. READ the readme before messaging or tweeting me.

jenkinz

jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.

keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

lazyrecon

An automated approach to performing recon for bug bounty hunting and penetration testing.

livetargetsfinder

Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts and gather service information

massdns

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

meg

Fetch many paths for many hosts - without killing the hosts

oneforall

OneForAll是一款功能强大的子域收集工具

passw0rd_jenny

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentest-tools

Custom pentesting tools

pentesting-bible

This repository was created and developed by Ammar Amer @cry__pto Only. Updates to this repository will continue to arrive until the number of links reaches 10000 links & 10000 pdf files .Learn Ethical Hacking and penetration testing .hundreds of ethical hacking & penetration testing & red team & cyber security & computer science resources.

red-teaming-toolkit

A collection of open source and commercial tools that aid in red team operations.

sub.sh

Online Subdomain Detect Script

subjack

Subdomain Takeover tool written in Go

sublert

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

the-book-of-secret-knowledge

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

theftfuzzer

TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.