drfich4 Goto Github PK

awesome-bugbounty-writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

awesome-burp-extensions

A curated list of amazingly awesome Burp Extensions

awesome-web-security

🐶 A curated list of Web Security materials and resources.

awesome-xss-payloads

Exotic and uncommon XSS Vectors to hit the target as quickly as possible.

blackhat-arsenal-tools

Official Black Hat Arsenal Security Tools Repository

bugbounty

RepoToStoreBugBountyInfo

cve-2020-1472

Test tool for CVE-2020-1472

dirdar

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

dirhunt

Find web directories without bruteforce

for-burp-intruder-waf-bypass-payload-repository

WAF Bypass Payload Lists

galaxy-bugbounty-checklist

Tips and Tutorials for Bug Bounty and also Penetration Tests.

google-dorks-resources

Operators for google search, list of dorks, resources for advanced google search.

gotestwaf

An open-source project in Golang to test different web application firewalls (WAF) for detection logic and bypasses

h4cker

This repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.

hacking-resources

The purpose of this blog is to give correct and precise information about various cyber security techniques

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

hatsploit

Modular penetration testing platform that enables you to write, test, and execute exploit code.

httpleaks

HTTPLeaks - All possible ways, a website can leak HTTP requests

id-detective-public

Vk search by photo

intrigue-core

Intelligence gathering framework

intruderpayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

learning-resources

Collection of resources to learn pentesting, exploit development, obfuscation & much more.

mars-stealer

Mars stealer crack V7.

needle

Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip

open-sesame

A python tool which runs to display random publicly disclosed Hackerone reports when bored. Automatically opens the report in browser.(Addtl. support for 700+ bug bounty writeups.)

open-source-tools-for-cti

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

osinto

penetration-list

Penetration-List is the supplement for Tester. It contains Every single type of vulnerabilities Material used during Penetration Testing. The list includes Pyaloads, dorks, Fuzzing Materials, and many more. And We also provide theory Sections about every vulnerability in deep, So More Information about our theory sections, Visit our Medium profile.

penetration-testing

penetration-testing-tools

A collection of more than 160+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.