Midnight is bash script that conducts subdomain enumeration and attack surface mapping and then tests for XSS with payload injection and reflection verification, it also tests for local file inclusion and SQL injection with a comprehensive library of over 300 payloads.

k9 extracts parameters from URLs to create a custom parameter wordlist

shittyRECON is a Python-based bug bounty reconnaissance automation tool that helps you automate various aspects of your recon process

A powerful Python tool designed to efficiently discover live subdomains for a specified domain.

This is a command-line tool written in Go that resolves domain names to their corresponding IP addresses.

This script automate exploit only cloud service

Wordlist Completa?

XSS-Scanny is a powerful Python-based XSS (Cross-Site Scripting) scanner tool designed to detect and assess potential vulnerabilities in web applications.

Find AWS subdomain vulnerable to subdomain takeover using nuclei

Bug bounty reports generator

Bughunter's Handbook - LAN

Hey, this is Shuvo Kumar Shill (@shuvo2i) who is a student of computer science. He has completed 4th-year Diploma in Computer Engineering and then continues under graduation degree on BSc in Computer Science and Engineering (CSE) in Bangladesh University. In her learning period, he also continues a job as a computer Technician in the government …

Hacktivity Dump

Books containing methods for Pen Testing Beginners.

More than just Spidering ~ For Pentesters

Simple LFI Vulnerability Tester with Authentication Support

Vulnerabilities hunting techniques, tutorials, payloads and things to Do while Hunting Vulnerability. ++

Bbrf2burp is a tool to export scope from BBRF to BURPSUITE.