Vice President, Security Operations and Researcher Success @ Bugcrowd
NoSQLMap. Automated NoSQL database enumeration and web application exploitation tool.
3.3kReconnoitre. A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
2.2kVHostScan. A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
1.3kInterlace. Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
1.3kDNSCewl. A DNS Bruteforcing Wordlist Generator
363BibWord. Microsoft Word and Bibliography Styles extender.
322OSCP-2. Collection of things made during my OSCP journey
267dorky. A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon
247bbr. An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
220crithit. Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures to cross-check vulnerabilities over multiple hosts.
213Minesweeper. A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).
203Retrieve-Windows-Wifi-Passwords. Retreives the SSID names and passwords in cleartext for each Wifi network stored on the computer running this powershell script and output to JSON.
83Ransomware-Json-Dataset. Compiles a json dataset using public sources that contains properties to aid in the detection and mitigation of over 1000 variants of ransomware.
73microsubs. A collection of code for interacting with API sources directly to improve your understanding of those services.
66dooked. DNS and Target HTTP History Local Storage and Search
62fastsub. A custom built DNS bruteforcer with multi-threading, and handling of bad resolvers.
56SharePoint-Security. A Github Repository Created to compliment a BSides Canberra 2018 talk on SharePoint Security.
49simple. A collection of one off hacks and simple scripts
26bug-bounty-dorks. List of Google Dorks for sites that have responsible disclosure program / bug bounty program
22cracknet. A .net Crackme Challenge made for the SecTalks Brisbane 2017 Capture the Flag Event. Writeup/solution included.
22Bugcrowd-Talks. Slide Decks and Supporting Content of talks given for Bugcrowd
18Awesome-Hacking-Resources. A collection of hacking / penetration testing resources to make you better!
18guides. A companion repo to accompany detailed guides and YouTube content to allow users to follow along
13graphql-wordlist. The only graphql wordlists you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
13pentest_compilation. Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios
13succinct. A tool to create a text summary of a provided list of websites
11cloud_enum. Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
9hacks. A collection of hacks and one-off scripts
9certasset. Takes ip range, Scan all open SSL Certs, Grab Cnames
8codingo.
8BurpSuite-Asset_Discover. Burp Suite extension to discover assets from HTTP response.
8sql-injection-payload-list. 🎯 SQL Injection Payload List
8WindowsExploits. Precompiled Windows exploits
8Windows-Privesc. Basics of Windows privilege escalation
7pwn_jenkins. Notes about attacking Jenkins servers
6megplus. Automated reconnaissance wrapper — TomNomNom's meg on steroids.
6DNSCewl-go. A DNS Bruteforcing Wordlist Generator
6can-i-take-over-xyz. "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
6RaiderOfTheLostBrowsers. Command line utility to extract passwords from the major browsers (Chrome, Firefox, Edge). Useful in demonstrating to users the importance of using proper password managers instead of saving credentials in browser based accounts which synchronize settings locally.
6awesome-pentest-cheat-sheets. Collection of the cheat sheets useful for pentesting
6bugbounty-cheatsheet. A list of interesting payloads, tips and tricks for bug bounty hunters.
5takeover. Sub-Domain TakeOver Vulnerability Scanner
5blog. Repository housing codingo-com hugo project
5XSS-Payloads. List of XSS Vectors/Payloads
5ssrf-playground. A playground to practice SSRF Attacks against web apps
5xssfinder. Toolset for detecting reflected xss in websites
5Cheatsheets-1. Penetration Testing/Security Cheatsheets
3bounty-targets-data. This repo contains hourly-updated data dumps of Hackerone/Bugcrowd scopes that are eligible for reports
2