Skip to content
View bormaa's full-sized avatar

Organizations

@B-Hunters

Block or report bormaa

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
Showing results

The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.

Python 46,341 2,135 Updated Apr 18, 2024

Detect file content types with deep learning

Rust 8,246 429 Updated Dec 24, 2024

Web path scanner

Python 12,352 2,332 Updated Dec 20, 2024

Your CLI home video recorder 📼

Go 15,544 266 Updated Dec 20, 2024

Open-source Windows and Office activator featuring HWID, Ohook, KMS38, and Online KMS activation methods, along with advanced troubleshooting.

Batchfile 109,551 10,601 Updated Dec 21, 2024

jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice

Python 250 25 Updated Apr 9, 2024

⛑ Automated developer-oriented status page

Go 6,764 444 Updated Dec 23, 2024

A fancy self-hosted monitoring tool

JavaScript 61,693 5,495 Updated Dec 22, 2024

NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications

Shell 1,319 201 Updated Sep 16, 2024

A list of public penetration test reports published by several consulting firms and academic security groups.

HTML 8,587 1,970 Updated Jun 6, 2024

Small tool to automate SSRF wordpress and XMLRPC finder

Go 80 12 Updated Dec 10, 2022

🚀 An open and lightweight modification to Windows, designed to optimize performance, privacy and usability.

PowerShell 14,496 540 Updated Dec 5, 2024

jsleak is a tool to find secret , paths or links in the source code during the recon.

Go 487 45 Updated Sep 25, 2024

Server-Side Template Injection and Code Injection Detection and Exploitation Tool

Python 3,830 678 Updated Apr 21, 2024

A collection of one-liners for bug bounty hunting.

1,250 194 Updated Oct 24, 2024

A collection of awesome one-liner scripts especially for bug bounty tips.

2,727 586 Updated Jul 29, 2024

GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

1,240 281 Updated Sep 13, 2024

ODAT: Oracle Database Attacking Tool

Python 1,628 345 Updated Jul 27, 2024

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Go 1,744 159 Updated Nov 18, 2024

Gospider - Fast web spider written in Go

Go 2,602 316 Updated Apr 21, 2024

Distributed malware processing framework based on Python, Redis and S3.

Python 395 46 Updated Oct 25, 2024

All reasonably stable tools

1,179 230 Updated Aug 17, 2024

Subdomain takeover vulnerability checker

Go 1,097 159 Updated Sep 10, 2024

A python tool to check subdomain takeover vulnerability

Python 328 61 Updated Jan 6, 2023

Automatic SQL injection and database takeover tool

Python 32,929 5,753 Updated Dec 10, 2024

Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.

549 36 Updated Dec 25, 2024

Asset inventory of over 800 public bug bounty programs.

Shell 1,286 228 Updated Dec 3, 2024

Windows inside a Docker container.

Shell 31,086 2,121 Updated Dec 21, 2024

A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.

Shell 879 124 Updated Dec 15, 2023
Next