KingOfTips's Projects
Finding XSS during recon
Generates permutations, alterations and mutations of subdomains and then resolves them
Find domains and subdomains related to a given domain
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
BBT - Bug Bounty Tools
Tips and Tutorials for Bug Bounty and also Penetration Tests.
BugBuntu Linux
Discovery Header Bug Bounty to DoD
Security tools report parsers for FaradaySEC
This is go CLI tool for send fast Multiple get HTTP request.
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
Gotator is a tool to generate DNS wordlists through permutations.
404
A collection of hacks and one-off scripts
Extract domains/subdomains from URLs en masse
json incremental digger
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Repositório criado com intuito de reunir informações, fontes(websites/portais) e tricks de OSINT dentro do contexto Brasil.
Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pages and see the returned values
Files to include in the package parrot-core.
Repo for hosting rayder workflows
Free, libre, effective, and data-driven wordlists for all!
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files