mrseccoder Goto Github PK

aquatone

A Tool for Domain Flyovers

axiom

The dynamic infrastructure framework for anybody!

bass

Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers to your "resolver.txt"

bug-bounty-dorks

List of Google Dorks for sites that have responsible disclosure program / bug bounty program

bug-bounty-tools

The tools I have programmed to help me with bugbounty's

commonspeak2-wordlists

Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.

dnsgen

Generates combination of domain names from the provided input.

dnsgrep

Quickly Search Large DNS Datasets

dnsvalidator

Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

dtd-finder

List DTDs and generate XXE payloads using those local DTDs.

fuzzdb

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

gf-patterns

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

gitdorker

A Python program to scrape secrets from GitHub through usage of a large repository of dorks.

gitgraber

gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

gitleaks

Scan git repos for secrets using regex and entropy 🔑

gmapsapiscanner

google_dork_list

Google Dorks | Google helps you to find Vulnerable Websites that Indexed in Google Search Results. Here is the latest collection of Google Dorks. A collection of 13.760 Dorks. Author: Jolanda de Koff

howtohunt

Tutorials and Things to Do while Hunting Vulnerability.

httprobe

Take a list of domains and probe for working HTTP and HTTPS servers

inception

A highly configurable Framework for easy automated web scanning

ivre

Network recon framework.

jaeles

The Swiss Army knife for automated Web Application Testing

jdwp-shellifier

keyfinder

Keyfinder🔑 is a tool that let you find keys while surfing the web!

keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

knary

A simple HTTP(S) and DNS Canary bot with Slack/Discord/MS Teams & Pushover support

lazyrecon

This script is intended to automate your reconnaissance process in an organized fashion

lazys3

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

osmedeus

Fully automated offensive security framework for reconnaissance and vulnerability scanning