navin-hacsociety Goto Github PK
Name: @alone_hacker08
Type: User
Name: @alone_hacker08
Type: User
Perfect Keylogger To Use
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹2000+,暴力破解协议10余种。
Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.
LFI Wordlist for Ffuf
A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning
tools to find xss in a website
XSS payloads for exploiting Markdown syntax
Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等
Mind-Maps of Several Things
Organize your API security assessment by using MindAPI. It's free and open for community collaboration.
Made for personal use.
Collection's of Tech Talk that are presented by me :)
This includes the methods of recon and exploit for Bug Bounty.
An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
Config files for my GitHub profile.
A framework for secure and scalable network traffic analysis - https://netcap.io
I have collected different open source tools for my bug-bounty. So in this repo i have organized them in a systematic way. So whenever i need something i can easily find required tools
笔记
Faster xss scanner,support reflected-xss and dom-xss
Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
NucleiFuzzer is a powerful automation tool for detecting xss,sqli,ssrf,open-redirect..etc vulnerabilities in web applications
Nucleimonst3r is a powerful vulnerability scanner that can help Bug Bounty Hunters find low hanging fruit vulnerabilities for known CVEs and exploits but also gather all the technology running behind them for further investigation for a potential target.
An Automated Mass Network Vulnerability Scanner and Recon Tool
A Huge Learning Resources with Labs For Offensive Security Players
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.