Matheus (StraNgFreak) Rocha ☠️'s Projects
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
All about bug bounty (bypasses, payloads, and etc)
In-depth Attack Surface Mapping and Asset Discovery
Application for showcasing Android application Crypto vulnerabilities
Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities
Hacky script to parse AndroidManifest.xml file and provide the list of components along with the intent filter and exported state
Analyze an APK archive.
A Tool for Domain Flyovers
Automate Your Application Security Orchestration And Correlation (ASOC) Using ArcherySec.
Go CLI and Library for quickly mapping organization network ranges using ASN information.
Small and highly portable detection tests based on MITRE's ATT&CK.
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
This is just an semi-automated fully working, no-bs, non-metasploit version of the public exploit code for MS17-010
AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
A curated list of various bug bounty tools
A curated list of GPT agents for cybersecurity
A collection of various awesome lists for hackers, pentesters and security researchers
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
Six Degrees of Domain Admin
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
BBT - Bug Bounty Tools
A repository that includes all the important wordlists used while bug hunting.
A list of interesting payloads, tips and tricks for bug bounty hunters.
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
BugBuntu Linux
Application for showcasing Android Deep Link and WebView Vulnerabilities
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules through a very intuitive graphical interface.
Automated Adversary Emulation Platform