tk-t0n0y Goto Github PK

dr.-watson

Dr. Watson is a simple Burp Suite extension that helps find assets, keys, subdomains, IP addresses, and other useful information! It's your very own discovery side kick, the Dr. Watson to your Sherlock!

dump

Stuff that doesn't deserves its own repository.

dumpxss

Scanner Tool For XSS Vulnerability

elevate

Horizontal Domain Discovery

espionage

A basic python based tool for domain ℹ️ information gathering. I am working 💻 on collecting information related to domain whois, history, dns records, web technologies and records from web. Feel free to drop a suggestion 💡

evilarc

Create tar/zip archives that can exploit directory traversal vulnerabilities

fastdork

⚡Chrome extension allows you to create lists of Google and Github dork to open multiple tabs with one click, import "scope/out of scope" from #HackerOne #Bugcrowd #Intigriti ...

ffufplus

You can read the writeup on this script here

file_upload_vulnerability_scenarios

This repository is a dockerized PHP application containing some file upload vulnerability challenges (scenarios).

flowchart.js

Draws simple SVG flow chart diagrams from textual representation of the diagram

frogy

My subdomain enumeration script. It's unique in the way it is built upon.

fuzz.txt

Potentially dangerous files

fuzzdicts

Web Pentesting Fuzz 字典,一个就够了。

gal

Get all possible href | src | url from target url or domain

garud

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

getlevels

A small Python Script To get all levels of subdomains from a list

gg-dorking

GG Dorking is a tool to generate GitHub and Google dorking for pentesters and bug bounty hunters.

gh-dork

Github dorking tool

git-dumper

A tool to dump a git repository from a website

gitscraper

A tool which scrapes public github repositories for common naming conventions in variables, folders and files

golden-guide-for-pentesting

Golden Guide

gotator

Gotator is a tool to generate DNS wordlists through permutations.

h4cks

Combination of all my Resources, Links & Scripts

h8mail

Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email

hackingtool

ALL IN ONE Hacking Tool For Hackers

hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

happy-birthday

Wish your friend/loved-ones happy birthday in a nerdy way.

hello-github-actions

holytips

Tips and Tutorials on Bug Bounty Hunting and Web Application Security.

image-upload-exploits

This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests and bug bounty.