pentest-tools
A collection of custom security tools for quick needs.github-search
A collection of tools to perform searches on GitHub.github-subdomains
Find subdomains on GitHub.s3-buckets-finder
Find AWS S3 buckets and test their permissions.cloudflare-origin-ip
Try to find the origin IP of a webapp protected by Cloudflare.BB-datas
Tools and datas related to Bug Bounty.github-endpoints
Find endpoints on GitHub.offsectools_www
A vast collection of security tools and resources curated by the community.DataExtractor
A Burp Suite extension to extract datas from source code while browsing.related-domains
Find related domains of a given domain.dnspy
Find subdomains and takeovers.vhost-brute
A PHP tool to brute force vhost configured on a server.actarus
Actarus is a custom tool for bug bountybugbountytips
Webapp to search tips on Twitter through #bugbountytipsgithub-regexp
Basically a regexp over a GitHub search.gitlab-subdomains
Find subdomains on GitLab.myrecon.py
My recon scriptkeyhacks.sh
Automation of tokens/api keys testing.google-search
Returns results from Google search.bxss
Alternative to XSS Hunter for blind XSS.BBstats
Bug Bounty statistics tool.BBvuln
A listing of the most common vuln that you can link in your PoCstestxss
PHP tool to test XSSfavicon-hashtrick
Python script implementing the favicon hash trick to find subdomains.detectify-cves
Find CVEs that don't have a Detectify modules.csp-analyzer
Analyze Content-Security-Policy header of a given URL.gitgrep
Webapp to perform regexp search over GitHub search.dnsexpire
Test domain expiration dates.apk-analyzer
Analyze an APK archive.extract-endpoints
Extract endpoints from source files.urlgrabber
PHP tool to grab urls of a specific site.gitpillage
Extract data from a .git directory.shotTheWorld
PHP tool that takes screenshots of a given ips/ports combo list and then try to guess the service.graphql-introspection-analyzer
Graphql introspection query analyzer.php-stegano-lsb
Hide file using Least Significant bits method.testidor
PHP tool to test IDORdotfiles
me dotfiles3rdparty-services
PHP tool to test 3rd party service validitygwen001
autoknoxss
Custom PHP tool to automate calls to KNOXSSact_custom
Custom scripts for Actarustestcrlf
PHP tool to test CRLFicmp-send-file
send file with pingipsites
PHP tool to find websites hosted by a given ipthegarden
Vulnerable web application made with Laravel.testcors
PHP tool to test CORS10degres.net_jenkins
http://10degres.netultimate-open-redirect
PHP tool to test open redirecttestionion
PHP script to find onion websitestestcsrf
PHP tool to test CSRFtestssrf
PHP tool to test SSRFMyPhpDirb
GoBuster like written in PHPsetricks
Small search engine tool usefull to find the position of a given websitegwen001.github.io
Silence is golden.testgo
my golang testpoc_subto
github-stargizer
View stars evolution of GitHub repositories.Love Open Source and this site? Check out how you can help us