sonahri Goto Github PK
Name: sonahri
Type: User
Bio: a wondering soul....
Name: sonahri
Type: User
Bio: a wondering soul....
Web security tool to make fuzzing at HTTP/S, Beta
All about bug bounty (bypasses, payloads, and etc)
In-Depth Subdomain Enumeration
Automated client-side template injection (sandbox escape/bypass) detection for AngularJS.
Checklist of the most important security countermeasures when designing, testing, and releasing your API
This tool is (Mainly) for Beginner's
This repository will serve as the "master" repo containing all trainings and tutorials done in preperation for OSWE in conjunction with the AWAE course. This repo will likely contain custom code by me and various courses.
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
A collection of various awesome lists for hackers, pentesters and security researchers
A collection of awesome penetration testing resources, tools and other shiny things
π₯ A curated list of awesome web application firewall (WAF) stuff.
Awesome XSS stuff
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
A list of interesting payloads, tips and tricks.
The Bug Bounty Wiki
A collection of scripts to extend Burp Suite
A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates JavaScript resources against threat intelligence data.
A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
A default credential scanner.
cheatsheet
Awesome cloud enumerator
CloudScraper: Tool to enumerate targets in search of cloud resources. S3 Buckets, Azure Blobs, Digital Ocean Storage Space.
CMSζΌζ΄ζ΅θ―η¨δΎιε
πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
Find web directories without bruteforce
Setup script for Regon-ng
Analyze the security of any domain by finding all the information possible. Made in python.
Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions
Ephemera and other documentation associated with the 1337list project.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. πππ
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google β€οΈ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.