0xraskin Goto Github PK

findomain

The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

fuzz4bounty

Awesome wordlists for Bug Bounty Hunting

fuzzuli

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

gau

Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.

google-dorks

gospider

Gospider - Fast web spider written in Go

gotator

Gotator is a tool to generate DNS wordlists through permutations.

gtfobins.github.io

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

howtohunt

Collection of methodology and test case for various web vulnerabilities.

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

jsparser

katana

A next-generation crawling and spidering framework.

kingofbugbountytips

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

knock

Knock Subdomain Scan

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

massdns

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

mind-maps

Mind-Maps of Several Things

mindmap

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

naabu

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

nmap-for-pentester

This cheatsheet was created to assist Red Teamers and Penetration Testers in hunting down vulnerabilities using "Nmap."

nuclei

Fast and customizable vulnerability scanner based on simple YAML based DSL.

onelistforall

Rockyou for web fuzzing

osmedeus

A Workflow Engine for Offensive Security

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentestmindmap

a mindmap on pentest #pentestmindmap #oscp #lpt #ecsa #ceh #bugbounty

probable_subdomains

Subdomains analysis and generation tool. Reveal the hidden!

puredns

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

qsreplace

Accept URLs on stdin, replace all query string values with a user-supplied value

reconftw

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities