This is your work, valued

Spain

six2dez

Elite
@six2dez

Ethical hacker, bash lover, foss rulz!

reconftw. reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

7.8k

OneListForAll. Rockyou for web fuzzing

3.2k

pentest-book.

2.1k

OSCP-Human-Guide. My own OSCP guide

854

wahh_extras. The Web Application Hacker's Handbook - Extra Content

570

dorks_hunter. Simple Google Dorks search tool

342

ipcdn. Check which CDN providers an IP list belongs to

192

burp-bounty-profiles. Burp Bounty profiles compilation, feel free to contribute!

152

obsidian-pentesting-vault. Sample Obsidian's vault for web pentesting

114

reconftw_ai. AI/LLM local model integration for analysis of reconftw results

104

degoogle_hunter. Simple fork from degoogle original project with bug hunting purposes

91

resolvers_reconftw. Resolvers updated daily for reconftw

50

postleaksNg. Search for sensitive data in Postman public library. Original work from https://github.com/cosad3s/postleaks

33

WebHackersWeapons. ⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting

28

mobile_pentesting_guide. Mobile Pentesting Guide (WIP)

24

useful-random-scripts. Just a bunch of useful scripts for netsec/admin/others

19

talks.

12

cloud_enum. Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

10

six2dez.

9

axiom. The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

8

keyhacks. Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

8

bitup2021_subdominions.

7

byp4xx. 40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...

7

MetaFinder. Search for documents in a domain through Search Engines (Google, Bing and Baidu). The objective is to extract metadata

7

dnstake. DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

7

dontgo403. Tool to bypass 40X response codes.

7

msftrecon. Python

6

bypass-firewalls-by-DNS-history. Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

5

uDork. uDork is a script written in Bash Scripting that uses advanced Google search techniques to obtain sensitive information in files or directories, find IoT devices, detect versions of web applications, and so on.

4

scoper. This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.

4

pwn-machine. The Pwning Machine

4

JSA. Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.

4

remotes. This is a repository listing companies which offer full-time remote jobs with Spanish contracts

4

sj. A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.

4

goop. Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.

3

crtfinder. Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search techniques

3

roboxtractor. Extract endpoints marked as disallow in robots files to generate wordlists.

3

Hashcat-Cheatsheet. Hashcat Cheatsheet for OSCP

3

rtlog. Python

3

SubreconGPT. Python

3

Enum_For_All.

3

Findomain. The complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, multiple API Keys for sources and much more.

3

MindAPI. Organize your API security assessment by using MindAPI. It's free and open for community collaboration.

3

exploitation-course. Offensive Software Exploitation Course

2

AnalyticsRelationships. Get related domains / subdomains by looking at Google Analytics IDs

2

owasp-mstg. The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.

2

Gf-Patterns. GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

2

dsieve. Take a list of urls and filter or extract domains by level.

2

cf-check. CloudFlare Checker written in Go

1

CVE-2021-3129. Laravel <= v8.4.2 debug mode: Remote code execution (CVE-2021-3129)

1

gotator. Gotator is a tool to generate DNS wordlists through permutations.

1

dotfiles. Just my dotfiles

1

pwn_jenkins. Notes about attacking Jenkins servers

1

vercel_tko_test2. HTML

1