Splint3r7's Projects
A curated list of security resources for a Ruby on Rails application
Awesome Ruby Security resources
Encode/decode any base
BB-Old-Scripts
My small collection of reports templates
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
Open Source Vulnerability Disclosure Framework. Maintained by Bugcrowd.
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Recon tool by Hassan Khan Yusufzai
A collection of my tools to do easy passive & active recon.
A simple threading-based tool to find reflection in parameters of multiple URLs for cross-site scripting identification.
Erubis is an fast and extensible eRuby implementation
Fast, unopinionated, minimalist web framework for node.
The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.
GemScanner identifies depreciated versions of gems in your ruby on rails project ( Gemfile.lock ) and notifies about their latest version.
Get the current state of any git repository
Reconnaissance tool for GitHub organizations
Note: Going through a full re-write of the tooling so the current versions in the repo do not work!
Learning graphql for pentesting
My Personal blog of hacking & fun!
A simple Python Exploit to Write Data to Insecure/vulnerable firebase databases! Commonly found inside Mobile Apps. If the owner of the app have set the security rules as true for both "read" & "write" an attacker can probably dump database and write his own data to firebase db.
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Single Page Cheatsheet for common MSF Venom One Liners
:page_facing_up: Html to pdf converter in nodejs. It spawns a phantomjs process and passes the pdf as buffer or as filename.
A collection of useful notes and commands
Identify NPM dependencies vulnerable to account hijacking
Community curated list of templates for the nuclei engine to find security vulnerabilities.