Skip to content
View ghsec's full-sized avatar
183 followers · 6 following

Achievements

Achievement: Starstruckx3Achievement: YOLOAchievement: QuickdrawAchievement: Pull SharkAchievement: Arctic Code Vault Contributor

Achievements

Achievement: Starstruckx3Achievement: YOLOAchievement: QuickdrawAchievement: Pull SharkAchievement: Arctic Code Vault Contributor

Block or report ghsec

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

Showing results

frank-leitner / portswigger-websecurity-academy

Writeups for PortSwigger WebSecurity Academy

Python 301 104 Updated Feb 5, 2023

r0oth3x49 / ghauri

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Python 3,485 362 Updated Feb 25, 2025

edoardottt / secfiles

My useful files for penetration tests, security assessments, bug bounty and other security related stuff

Shell 166 21 Updated Apr 23, 2025

daffainfo / AllAboutBugBounty

All about bug bounty (bypasses, payloads, and etc)

6,217 1,205 Updated Sep 8, 2023

j3ssie / sdlookup

IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io

Go 127 19 Updated Mar 10, 2022

edoardottt / lit-bb-hack-tools

Little Bug Bounty & Hacking Tools⚔️

Go 353 60 Updated Nov 10, 2024

edoardottt / scilla

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Go 1,007 125 Updated Apr 16, 2025

nytr0gen / deduplicate

Remove duplicate urls from input

Go 56 20 Updated May 31, 2022

ARPSyndicate / cve-scores

EPSS & VEDAS Score Aggregator for CVEs

236 35 Updated Apr 23, 2025

zeroc00I / AllVideoPocsFromHackerOne

This script grab public report from hacker one and make some folders with poc videos

Shell 890 221 Updated Jan 20, 2023

MohamedTarekq / GgDorker

Python 50 9 Updated Aug 16, 2021

synacktiv / HopLa

HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite

Java 742 81 Updated May 12, 2021

cybertron10 / SSRF-Testing

Forked from cujanovic/SSRF-Testing

SSRF (Server Side Request Forgery) testing resources

Python 1 1 Updated Jan 14, 2021

KathanP19 / HowToHunt

Collection of methodology and test case for various web vulnerabilities.

6,358 1,792 Updated Mar 18, 2025

jaeles-project / gospider

Gospider - Fast web spider written in Go

Go 2,691 326 Updated Apr 21, 2024

ameenmaali / urldedupe

Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations

C++ 358 58 Updated Jun 17, 2020

projectdiscovery / httpx

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Go 8,408 896 Updated Apr 23, 2025

devanshbatham / Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Python 5,077 1,065 Updated Aug 6, 2023

Xero-Zero / knoxss-paylaod

8 14 Updated Aug 3, 2019

ameenmaali / qsfuzz

qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.

Go 301 37 Updated Feb 12, 2023

TheKingOfDuck / fuzzDicts

You Know, For WEB Fuzzing ! 日站用的字典。

Python 7,842 2,462 Updated Nov 13, 2023

six2dez / wahh_extras

The Web Application Hacker's Handbook - Extra Content

Java 550 109 Updated Jun 9, 2023

hakluke / hakrawler

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Go 4,688 520 Updated Dec 21, 2024

streaak / keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

5,439 1,093 Updated Aug 14, 2024

zer0yu / Berserker

A list of useful payloads for Web Application Security and Pentest/CTF

Python 300 57 Updated Aug 14, 2024

jaeles-project / jaeles-signatures

Default signature for Jaeles Scanner

319 71 Updated Apr 9, 2022

wagiro / BurpBounty

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…

Java 1,721 343 Updated Apr 26, 2024

andresriancho / w3af

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Python 4,704 1,226 Updated Feb 22, 2023

s0md3v / goop

Google Search Scraper

Python 566 103 Updated Aug 23, 2019

j3ssie / metabigor

OSINT tools and more but without API key

Go 1,323 175 Updated Apr 19, 2024
Next