th3cyb3rc0p
Follow
Stars
A curated list of awesome Go frameworks, libraries and software
Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …
Find, verify, and analyze leaked credentials
In-depth attack surface mapping and asset discovery
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Fast passive subdomain enumeration tool.
Directory/File, DNS and VHost busting tool written in Go
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
Reconnaissance tool for GitHub organizations
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Fetch all the URLs that the Wayback Machine knows about for a domain
An OOB interaction gathering server and client library
Find domains and subdomains related to a given domain
🔓 🔓 Find secrets and passwords in container images and file systems 🔓 🔓