soumikhasan696 Goto Github PK

shodan-dorks

Shodan Dorks

siem-cheat-sheet

SIEM Cheat Sheet

simplejs

A simple bash script to gather js files from waybackurls and check for any exposures using nuclei engine.

soaphound

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

social-media-osint-tools-collection

A collection of most useful osint tools for SOCINT.

sploitscan

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated proof-of-concept (PoC) exploits.

sqlidetector

Simple python script supported with BurpBouty profile that helps you to detect SQL injection "Error based" by sending multiple requests with 14 payloads and checking for 152 regex patterns for different databases.

sqlifinder

SQL Injection Vulnerability Scanner made with Python

sqli_sleeps

ssrfmap

Automatic SSRF fuzzer and exploitation tool

sublist3rv2

Fast subdomains enumeration tool for penetration testers and bug bounty hunters

subprober

Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. The tool offers concurrent scanning, allowing users to define their preferred concurrency level for faster results. Whether you are on Linux, Windows, or macos

takeover

Sub-Domain TakeOver Vulnerability Scanner

th3inspector

Th3Inspector 🕵️ Best Tool For Information Gathering 🔎

ultimate_discovery

Ultimate Wordlist for Web Content Discovery

uniscan

Uniscan web vulnerability scanner

villain

Villain is a C2 framework that can handle multiple TCP socket & HoaxShell-based reverse shells, enhance their functionality with additional features (commands, utilities etc) and share them among connected sibling servers (Villain instances running on different machines).

vulnerability-checklist

This repository contain a lot of vulnerability checklist , a lot of vulnerability ideas and tips from twitter

vulnerable-ad

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

vulnscanx

The Security Testing Tool is a command-line app for web app security. It checks XSS, SQLi, and RCE vulnerabilities. Easy to use, customizable payloads, and detailed results empower developers and security pros to enhance web app security ethically.

waymore

Find way more from the Wayback Machine!

web3-doc

Web3 description

webcopilot

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

webkiller

Tool Information Gathering Write By Python.

web_hacking

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

whats-spoofing

Whatsapp Exploit to spoofing impersonate of reply message

wordlist

wordlists

Real-world infosec wordlists, updated regularly

x-osint

This is an Open source intelligent framework ie an osint tool which gathers valid information about a phone number, user's email address, perform VIN Osint, and reverse, perform subdomain enumeration, able to find email from a name, and so much more. Best osint tool for Termux and linux

xurlfind3r

A CLI utility to find domain's known URLs from curated passive online sources.