Gwendal Le Coguic (@gwen001)
github

gwen001

Twitter logo Share LinkedIn logo Share Facebook logo Share

Top repositories

1

pentest-tools

A collection of custom security tools for quick needs.
Python
2,971
star
2

github-search

A collection of tools to perform searches on GitHub.
Python
1,233
star
3

github-subdomains

Find subdomains on GitHub.
Go
663
star
4

s3-buckets-finder

Find AWS S3 buckets and test their permissions.
PHP
353
star
5

cloudflare-origin-ip

Try to find the origin IP of a webapp protected by Cloudflare.
Python
258
star
6

BB-datas

Tools and datas related to Bug Bounty.
PHP
225
star
7

github-endpoints

Find endpoints on GitHub.
Go
184
star
8

offsectools_www

A vast collection of security tools and resources curated by the community.
HTML
177
star
9

DataExtractor

A Burp Suite extension to extract datas from source code while browsing.
Python
136
star
10

related-domains

Find related domains of a given domain.
Python
84
star
11

dnspy

Find subdomains and takeovers.
Python
83
star
12

vhost-brute

A PHP tool to brute force vhost configured on a server.
PHP
78
star
13

actarus

Actarus is a custom tool for bug bounty
HTML
76
star
14

bugbountytips

Webapp to search tips on Twitter through #bugbountytips
CSS
67
star
15

github-regexp

Basically a regexp over a GitHub search.
Go
61
star
16

gitlab-subdomains

Find subdomains on GitLab.
Go
60
star
17

myrecon.py

My recon script
Python
52
star
18

keyhacks.sh

Automation of tokens/api keys testing.
Shell
48
star
19

google-search

Returns results from Google search.
Python
43
star
20

bxss

Alternative to XSS Hunter for blind XSS.
PHP
40
star
21

BBstats

Bug Bounty statistics tool.
PHP
30
star
22

BBvuln

A listing of the most common vuln that you can link in your PoCs
25
star
23

testxss

PHP tool to test XSS
PHP
22
star
24

favicon-hashtrick

Python script implementing the favicon hash trick to find subdomains.
Python
22
star
25

detectify-cves

Find CVEs that don't have a Detectify modules.
Python
20
star
26

csp-analyzer

Analyze Content-Security-Policy header of a given URL.
Python
15
star
27

gitgrep

Webapp to perform regexp search over GitHub search.
PHP
14
star
28

dnsexpire

Test domain expiration dates.
PHP
13
star
29

apk-analyzer

Analyze an APK archive.
Python
13
star
30

extract-endpoints

Extract endpoints from source files.
PHP
11
star
31

urlgrabber

PHP tool to grab urls of a specific site.
PHP
11
star
32

gitpillage

Extract data from a .git directory.
Python
10
star
33

shotTheWorld

PHP tool that takes screenshots of a given ips/ports combo list and then try to guess the service.
PHP
9
star
34

graphql-introspection-analyzer

Graphql introspection query analyzer.
Python
8
star
35

php-stegano-lsb

Hide file using Least Significant bits method.
PHP
7
star
36

testidor

PHP tool to test IDOR
PHP
6
star
37

dotfiles

me dotfiles
Shell
6
star
38

3rdparty-services

PHP tool to test 3rd party service validity
PHP
6
star
39

gwen001

6
star
40

autoknoxss

Custom PHP tool to automate calls to KNOXSS
PHP
6
star
41

act_custom

Custom scripts for Actarus
PHP
5
star
42

testcrlf

PHP tool to test CRLF
PHP
5
star
43

icmp-send-file

send file with ping
Shell
4
star
44

ipsites

PHP tool to find websites hosted by a given ip
PHP
4
star
45

thegarden

Vulnerable web application made with Laravel.
JavaScript
4
star
46

testcors

PHP tool to test CORS
PHP
3
star
47

testionion

PHP script to find onion websites
PHP
3
star
48

10degres.net_jenkins

http://10degres.net
HTML
3
star
49

testcsrf

PHP tool to test CSRF
PHP
3
star
50

ultimate-open-redirect

PHP tool to test open redirect
PHP
3
star
51

testssrf

PHP tool to test SSRF
PHP
3
star
52

MyPhpDirb

GoBuster like written in PHP
PHP
2
star
53

setricks

Small search engine tool usefull to find the position of a given website
PHP
2
star
54

gwen001.github.io

Silence is golden.
Go
2
star
55

testgo

my golang test
Go
1
star
56

poc_subto

JavaScript
1
star
57

github-stargizer

View stars evolution of GitHub repositories.
PHP
1
star