Warg's Projects
API Key/Token Exploitation Made easy.
Generates permutations, alterations and mutations of subdomains and then resolves them
A tool for adding new lines to files, skipping duplicates
Extract endpoints from APK files
Files for appsecwiki.com
A Tool for Domain Flyovers
HTTP parameter discovery suite.
Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Quick SQLMap Tamper Suggester
Auxiliator is telegram bot for basic web-application analysis
π A list of writeups from the Google VRP Bug Bounty program
Awesome XSS stuff
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
BBT - Bug Bounty Tools (examplesπ‘)
Code Examples for blog.kotowicz.net
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
Takes ip range, Scan all open SSL Certs, Grab Cnames
Cloudflare, Sucuri, Incapsula real IP tracker.
Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
Make concurrent requests with the curl command-line tool
It converts the xml formatted burpsuite proxy history to a .csv format that can be used to import in Logger ++
CTF Writeups
My CTF writeups
The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis
search Google and extract results directly. skip all the click-through links and other sketchiness
Extract endpoints from apk files.
Generates combination of domain names from the provided input.