#
Starred repositories
Online-Crawler-Wayback-Machine
RockYou2021.txt is a MASSIVE WORDLIST compiled of various other wordlists. RockYou2021.txt DOES NOT CONTAIN USER:PASS logins!
Close-Circuit Telegram Vision revolutionizes location tracking with its open-source design and Telegram API integration. Offering precise tracking within 50-100 meters, users can monitor others in …
Automated .NET AppDomain hijack payload generation
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.
hauditor is a tool designed to analyze the security headers returned by a web page.
Toutatis is a tool that allows you to extract information from instagrams accounts such as e-mails, phone numbers and more
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
🕵️ OSINT Tools for gathering information and actions forensics 🕵️
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.
A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
practical toolkit for cybersecurity and IT professionals. It features a detailed Linux cheatsheet for incident response
XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.
Accept URLs on stdin, replace all query string values with a user-supplied value
This repository contains a simple vulnerability scanner for the Terrapin attack present in the paper "Terrapin Attack: Breaking SSH Channel Integrity By Sequence Number Manipulation".
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
Find All Parameters - Tool to crawl pages, find potential parameters and generate a custom target parameter wordlist
Fake IP sources using Linux's BPF feature
Track the GPS location of the user's smartphone or PC and capture a picture of the target, along with IP and device information.
Top disclosed reports from HackerOne
uforall is a fast url crawler this tool crawl all URLs number of different sources, alienvault,WayBackMachine,urlscan,commoncrawl
Email2WhatsApp is a GoLang project aimed at OSINT. It enables the discovery of WhatsApp numbers from email addresses, providing a valuable tool for digital investigations.