Stars
A collection of templates for bug bounty reporting
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
A tool to dump a git repository from a website
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
Security Tool to Look For Interesting Files in S3 Buckets
Fetch all the URLs that the Wayback Machine knows about for a domain
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
A python script that finds endpoints in JavaScript files
swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web f…

