Brisbane, Australia

Michael Skelton

Elite
@codingo

Vice President, Security Operations and Researcher Success @ Bugcrowd

NoSQLMap. Automated NoSQL database enumeration and web application exploitation tool.

3.3k

Reconnoitre. A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.

2.2k

VHostScan. A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.

1.3k

Interlace. Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.

1.3k

DNSCewl. A DNS Bruteforcing Wordlist Generator

363

BibWord. Microsoft Word and Bibliography Styles extender.

322

OSCP-2. Collection of things made during my OSCP journey

267

dorky. A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon

247

bbr. An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.

220

crithit. Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.

213

Minesweeper. A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

203

Retrieve-Windows-Wifi-Passwords. Retreives the SSID names and passwords in cleartext for each Wifi network stored on the computer running this powershell script and output to JSON.

83

Ransomware-Json-Dataset. Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.

73

microsubs. A collection of code for interacting with API sources directly to improve your understanding of those services.

66

dooked. DNS and Target HTTP History Local Storage and Search

62

fastsub. A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.

56

SharePoint-Security. A Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.

49

simple. A collection of one off hacks and simple scripts

26

bug-bounty-dorks. List of Google Dorks for sites that have responsible disclosure program / bug bounty program

22

cracknet. A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.

22

Bugcrowd-Talks. Slide Decks and Supporting Content of talks given for Bugcrowd

18

Awesome-Hacking-Resources. A collection of hacking / penetration testing resources to make you better!

18

guides. A companion repo to accompany detailed guides and YouTube content to allow users to follow along

13

graphql-wordlist. The only graphql wordlists you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.

13

pentest_compilation. Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

13

succinct. A tool to create a text summary of a provided list of websites

11

cloud_enum. Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

9

hacks. A collection of hacks and one-off scripts

9

certasset. Takes ip range, Scan all open SSL Certs, Grab Cnames

8

codingo.

8

BurpSuite-Asset_Discover. Burp Suite extension to discover assets from HTTP response.

8

sql-injection-payload-list. 🎯 SQL Injection Payload List

8

WindowsExploits. Precompiled Windows exploits

8

Windows-Privesc. Basics of Windows privilege escalation

7

pwn_jenkins. Notes about attacking Jenkins servers

6

megplus. Automated reconnaissance wrapper — TomNomNom's meg on steroids.

6

DNSCewl-go. A DNS Bruteforcing Wordlist Generator

6

can-i-take-over-xyz. "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

6

RaiderOfTheLostBrowsers. Command line utility to extract passwords from the major browsers (Chrome, Firefox, Edge). Useful in demonstrating to users the importance of using proper password managers instead of saving credentials in browser based accounts which synchronize settings locally.

6

awesome-pentest-cheat-sheets. Collection of the cheat sheets useful for pentesting

6

bugbounty-cheatsheet. A list of interesting payloads, tips and tricks for bug bounty hunters.

5

takeover. Sub-Domain TakeOver Vulnerability Scanner

5

blog. Repository housing codingo-com hugo project

5

XSS-Payloads. List of XSS Vectors/Payloads

5

ssrf-playground. A playground to practice SSRF Attacks against web apps

5

xssfinder. Toolset for detecting reflected xss in websites

5

Cheatsheets-1. Penetration Testing/Security Cheatsheets

3

bounty-targets-data. This repo contains hourly-updated data dumps of Hackerone/Bugcrowd scopes that are eligible for reports

2
48
Apply