Gujarat,India

Kathan Patel

Elite
@KathanP19

Lets Hunt For Bugs.....!

HowToHunt. Collection of methodology and test case for various web vulnerabilities.

7.2k

JSFScan.sh. Automation for javascript recon in bug bounty.

1.1k

Gxss. A tool to check a bunch of URLs that contain reflecting params.

601

gaussrf. Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SSRF Parameters.

175

BreachedDataScraper. Search breached data on private nodes, darkweb, internet, end-to-end channels

149

protoscan. Prototype Pollution Scanner

144

portscan.sh. All in one port scanning script.

68

waybackfetch. Tool for fetching all the available waybackmachine snapshot urls

26

OpenBB-Scope. OpenBugBounty - https://www.openbugbounty.org/ programs list

23

Python_For_Pentester. Programs I Made while learning python for pentesters.

21

bash_script_templates. Some Templates for Bash Scripting

18

KathanP19.

15

Bheem. Shell

12

wordlists. Wordlists for Fuzzing

11

hackerone_wordlist. The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform

11

SecurityTesting. Shell

10

pwndb. Search for leaked credentials

7

reconftw. ReconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

7

AndroidCTF. Different Android Challenges I solved.

6

Portscanner. A Simple Port Scanner with Multi-Threading And User Define Port Range

6

learnwebscraping. this are some web scrapers i built during learning web scraping

6

Bug-bounty. Ressources for bug bounty hunting

6

bruteforce-lists. Some files for bruteforcing certain things.

6

scripthunter. Tool to find JavaScript files on Websites

6

xssXD. Go

5

frogy-subdomain-enumeration. My subdomain enumeration

5

Magic-CheckList-for-Web-Applications. Web Security Checklist (Bug Bounty & Pentesting)

5

15_Python_Projects. Jupyter Notebook

5

Garud. An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.

5

Parse_Apache_Log. Simple Python Script to Parse Apache Log, Get all Unique IPs and Urls visited by that IP.

4

web-cache-deception-checker. Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages

3

WayRobots. Tool to find stored robots.txt files from the past

3

analyzeJS. A tools for JavaScript Recon

3

sillydadddy.github.io. Ruby

3

mildew. Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs

3

Oralyzer. Open Redirection Analyzer

3

SpotiHook. A Spotify hook that cracks DRM protection and allows to download songs.

3

rb-recon.

2

cazador_unr. Hacking tools

2

autoRecon. This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.

2

GOAD. game of active directory

2

cvebase.com. cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

2

hostinjector. Multithreaded Host Header Redirection Scanner

2

learning-golang. Small program made while learning golang.

2

Sublist3r. Fast subdomains enumeration tool for penetration testers

2

Bluto. DNS Recon | Brute Forcer | DNS Zone Transfer | DNS Wild Card Checks | DNS Wild Card Brute Forcer | Email Enumeration | Staff Enumeration | Compromised Account Checking

2

tko-subs. A tool that can help detect and takeover subdomains with dead DNS records

1

AttackSurfaceMapper. AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.

1

Presentation_Scripts_PPTs. C

1

Subdomain. Hacks For Subdomain Enumeration

1

LazyRecon. An automated approach to performing recon for bug bounty hunting and penetration testing.

1
51
Apply