Adrien

Elite
@hisxo

Bug Bounty and other security things

gitGraber. gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

2.3k

ReconAIzer. A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!

901

JSpector. A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues

379

Wordlist. Wordlists for Bug Bounty

23

SecLists. SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

9

Awesome-XSS-Payloads. Exotic and uncommon XSS Vectors to hit the target as quickly as possible.

5

PayloadsAllTheThings. HTML

4

Encrypter-Metasploit. Ruby

4

Amass. In-depth Attack Surface Mapping and Asset Discovery

2

massdns. A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

2

RegExAPI. list of regex for apis

2

XSS-Payloads. List of advanced XSS payloads

1

rengine. reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.

1

truffleHogRegexes. These are the regexes that power truffleHog

1

Best-README-Template. An awesome README template to jumpstart your projects!

1

bounty-targets-data. This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

1

scapy. Scapy: the Python-based interactive packet manipulation program & library. Supports Python 2 & Python 3.

1

BB-legal-FR. Quelques conseils autour des obligations légales, fiscales et juridique pour la pratique du Bug Bounty en France

1

Open-Redirect-Payloads. Open Redirect Payloads

1

XXE-study. This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.

1
20
Apply