Sajeesh A B's Projects
Command line tool for testing CRLF injection on a list of domains.
This tool shows the result of crt.sh
This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.
CVE-2019-3396 confluence SSTI RCE
GitLab 12.9.0 Arbitrary File Read
🌙🦊 DalFox is an powerful open source XSS scanning tool and parameter analyzer, utility
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
Damn Vulnerable Web Application (DVWA)
Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity
Containing Self Made Perl Reproducers / PoC Codes
A collection of various awesome lists for hackers, pentesters and security researchers. With repository stars⭐ and forks🍴
File upload vulnerability scanner and exploitation tool.
Useful Google Dorks for WebSecurity and Bug Bounty
Gospider - Fast web spider written in Go
Top 100 Hacking & Security E-Books (Free Download)
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
👽 Open source API development ecosystem - https://hoppscotch.io
httpx is a fast and multi-purpose HTTP toolkit allows to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
You can read the writeup on this script here
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
LFI to RCE tool.
Local file inclusion exploitation tool
A python script that finds endpoints in JavaScript files
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent