cryptoknife's Projects
Generates permutations, alterations and mutations of subdomains and then resolves them
HTTP parameter discovery suite.
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
A collection of various awesome lists for hackers, pentesters and security researchers
A collection of hacking / penetration testing resources to make you better!
A collection of awesome penetration testing resources, tools and other shiny things
List of Awesome Red Teaming Resources
A list of web application security
š¶ A curated list of Web Security materials and resources.
Burpsuite Extension to bypass 403 restricted directory
Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the module provided and finally generate a HTML report.
bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Simple bash script to bypass "403 Forbidden" messages with well-known methods discussed in #bugbountytips
"Can I take over XYZ?" ā a list of services and how to claim (sub)domains with dangling DNS records.
Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
Config files for my GitHub profile.
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
A fast, simple, recursive content discovery tool written in Rust.
Fast web fuzzer written in Go
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
A list of free and open forensics analysis tools and other resources
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
grapX will iterate through the URLs and grep the endpoints with all possible extensions.
Tutorials and Things to Do while Hunting Vulnerability.
HTTP Request Smuggling Detection Tool