navin-hacsociety Goto Github PK

keylogger-email-send-keylogger

Perfect Keylogger To Use

kingofbugbountytips

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..

knowledgesharing

kscan

Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹2000+，暴力破解协议10余种。

ksubdomain

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

leaky-paths

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

lfi-files

LFI Wordlist for Ffuf

logsensor

A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanning

lu3ky13-scanner

tools to find xss in a website

markdown-xss-payloads

XSS payloads for exploiting Markdown syntax

mars

Mars(战神)——资产发现、子域名枚举、C段扫描、资产变更监测、端口变更监测、域名解析变更监测、Awvs扫描、POC检测、web指纹探测、端口指纹探测、CDN探测、操作系统指纹探测、泛解析探测、WAF探测、敏感信息检测等等

mind-maps

Mind-Maps of Several Things

mindapi

Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

my-bug-bounty-resources

Made for personal use.

my-presentation-slides

Collection's of Tech Talk that are presented by me :)

my-word-list

myreconmethods

This includes the methods of recon and exploit for Bug Bounty.

n0kovo_subdomains

An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.

navin-hacsociety

Config files for my GitHub profile.

netcap

A framework for secure and scalable network traffic analysis - https://netcap.io

newassets

I have collected different open source tools for my bug-bounty. So in this repo i have organized them in a systematic way. So whenever i need something i can easily find required tools

note

笔记

notes

noxss

Faster xss scanner,support reflected-xss and dom-xss

nuclei-burpextension

Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

nucleifuzzer

NucleiFuzzer is a powerful automation tool for detecting xss,sqli,ssrf,open-redirect..etc vulnerabilities in web applications

nucleimonst3r

Nucleimonst3r is a powerful vulnerability scanner that can help Bug Bounty Hunters find low hanging fruit vulnerabilities for known CVEs and exploits but also gather all the technology running behind them for further investigation for a potential target.

nutoscan

An Automated Mass Network Vulnerability Scanner and Recon Tool

offensive-resources

A Huge Learning Resources with Labs For Offensive Security Players