indore Mp India

Shiv Chouhan

Elite
@1ndianl33t

Web & Mobile Application Security Researcher Hacker , Bug Hunter , Hackerone , Bugcrowd, @1ndianl33t

Bug-Bounty-Roadmaps. Bug Bounty Roadmaps

1.7k

Gf-Patterns. GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep

1.4k

Bugbounty-Resources. A list of resources for those interested in getting started in bug bounties inspired from https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

171

urlprobe. Urls status code & content length checker

145

All-in-one_BugBounty_PDF_bundles.

130

1ndiList. Recon Custom WordList Ganerator

59

BugBounty_Profile. Recon_profile

38

1ndi-hacks. Bug Bounty Tools

34

1ndiwordlist. Bug Bounty Recon wordlist Generator

21

dotfiles. .bash_profile , .bashrc , .vimrc etc

8

1ndiSpider. Fast Web Crawler

5

EchoPwn. Recon Automation for hackers by hackers

4

Command-Mobile-Penetration-Testing-Cheatsheet. Mobile penetration testing android & iOS command cheatsheet

4

1ndiSubs. Subdomain Enumeration Tool

4

bugbounty-cheatsheet. A list of interesting payloads, tips and tricks for bug bounty hunters.

4

hacking-methodologies. Hack

4

recox. Master script for web reconnaissance

4

fff. The Fairly Fast Fetcher. Requests a bunch of URLs provided on stdin fairly quickly.

3

Awesome-Bugbounty-Writeups. A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

3

meg. Fetch many paths for many hosts - without killing the hosts

3

1ndiRecon. All-in-one Bug bounty Recon

3

gf. A wrapper around grep, to help you grep for things

3

ParamSpider. Mining parameters from dark corners of Web Archives

2

Sublist3r. Fast subdomains enumeration tool for penetration testers

2

awesome-design. 🌟Curated design resources

2

gahttp. Async / concurrent HTTP requests for Go

2

recon-pipeline. An automated target reconnaissance pipeline.

2

awesome-bug-bounty. A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

2

fuzzmost. all manner of wordlists

2

ptools. Go

1

dnsdig. Perform Multiple Dns queries

1

Bountystrike-sh. Poor (rich?) man's bug bounty pipeline

1

gmapsapiscanner. Python

1

Subrake. A powerful Subdomain Scanner & Validator for Reconnaissance.

1

quiver. Quiver is the tool to manage all of your tools. It's an opinionated and curated collection of commands, notes and scripts for bug bounty hunting and penetration testing.

1

gwdomains. sub domain wild card filtering tool

1

Arjun. HTTP parameter discovery suite.

1

cf-check. Check an IP is Owned by Cloudflare

1

Bash-Hacks.

1

generator-burp-extension. Everithing you need about Burp Extension Generation

1

gowhois. Go

1

dalfox. DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang

1

jwtbin. Generate JWT Tokens using a Secret and Command Line Options (claims/expiration)

1

bhg. Code samples for No Starch Press Black Hat Go

1

SSRFmap. Automatic SSRF fuzzer and exploitation tool

1

Awesome-Asset-Discovery. List of Awesome Asset Discovery Resources

1

BurpBounty. Burp Bounty (Scan Check Builder in BApps Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.

1

dirsearch. Web path scanner

1

SMBrute. SMB Protocol Bruteforce

1
49
Apply