An improvised Automated Threat Intelligent System with advanced vulnerability scanners and Opensource Intelligence Information gathering python scripts when integrated with McAfee Advanced Threat D…

All In One Web Recon

RFHunter is a device to find hidden Cameras at AirBNBs

GeoServer Remote Code Execution

This project aims to be a drop-in replacement for the certstream server by Calidog. This tool aggregates, parses, and streams certificate data from multiple certificate transparency logs via websoc…

Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.

Check subdomains for subdomain takeovers and other DNS tomfoolery

Find cloud assets that no one wants exposed 🔎 ☁️

WConsole Extractor is a python library which automatically exploits a Werkzeug development server in debug mode. You just have to write a python function that leaks a file content and you have your…

Stalker, the Extensible Attack Surface Management tool.

Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/or bug bounty targets!

Nuclei templates for honeypots detection.

Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed by specific organizations and issued TLS/SSL certificate.

Nmap script to detect a Microsoft Exchange instance version with OWA enabled.

一键ThinkPHP漏洞检测

A Certificate Transparency log implementation and monitoring API designed for scalability, ease of operation, and reduced cost.

Plugin-driven, extensible HTTP client toolkit for Go

Use favicon.ico to improve your target recon phase. Quickly detect technologies, WAF, exposed panels, known services.

Origin IP scanning utility developed with ChatGPT

fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.

DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).

a recon tool that allows searching on URLs that are exposed via shortener services

Unleash the power of cloud

Real-world infosec wordlists, updated regularly

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

XSS payloads designed to turn alert(1) into P1

ChatGPT Prompts for Bug Bounty & Pentesting

A GPT-empowered penetration testing tool