992 Open source projects that are alternatives of or similar to Can I Take Over Xyz

Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second

A big list of Android Hackerone disclosed reports and other resources.

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

An OSINT tool to find contacts in order to report security vulnerabilities.

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Pentest: Subdomains enumeration tool for penetration testers.

Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found

Intelligence tool but without API key

A Storehouse of resources related to Bug Bounty Hunting collected from different sources. Latest guides, tools, methodology, platforms tips, and tricks curated by us.

Secret and/ credential patterns used for gf.

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

Python library and CLI for the Bug Bounty Recon API

🔍 A collection of interesting, funny, and depressing search queries to plug into shodan.io 👩‍💻

Popover to render a selectable list

List of Russian words

🌩️ A list of awesome online development environments

🤖 A curated list of in-browser bookmarklets, tools, and resources for modern full-stack software engineers.

Poor (rich?) man's bug bounty pipeline

🔓 A dynamic dictionary merger for successful dictionary based attacks.

An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.

A curated list of everything anime.

Exploit Development, Reverse Engineering & Cryptography

Awesome list of Draft.js resources

A curated list of awesome network analysis resources.

Python Sorted Container Types: Sorted List, Sorted Dict, and Sorted Set

Notes Taken for HTB Machines & InfoSec Community.

📄 A curated list of awesome developer personal websites

An Awesome List of computer history videos, documentaries and related folklore

A tool to automate the boring process of APK recon

Lists of JavaScript resources: tools, tutorials, starter projects, example code, etc.

🔺 Red Team Hardware Toolkit 🔺

A Burpsuite plugin (BApp) to aid in the detection of scripts being loaded from over 23000 malicious cryptocurrency mining domains (cryptojacking).

A collection of awesome browser extensions for GitHub.

Agile Threat Modeling Toolkit

Ruby and Ruby on Rails bookmarks collection

A passive subdomain finder

Anti-keylogger/anti-rat application for Windows

A portable OSINT Swiss Army Knife for DFIR/OSINT professionals 🕵️ 🕵️ 🕵️

Awesome Vulnerable Applications

OWASP Honeypot, Automated Deception Framework.

CVE-2017-9506 - SSRF

Listado de Chats de Comunidades en Telegram

Monitoring your Slack workspaces for sensitive information

 A curated list of awesome applications, softwares, tools and shiny things for macOS.

A medium interaction printer honeypot 🍯

✂A collection of useful .htaccess snippets.

A curated list of the latest breakthroughs in AI by release date with a clear video explanation, link to a more in-depth article, and code

Hide secrets with invisible characters in plain text securely using passwords 🧙🏻‍♂️⭐

Simple usage lib for subdomain routing in ASP.NET Core/Framework MVC

A python script that finds endpoints in JavaScript files

Hawkeye filesystem analysis tool

A curated list of awesome tools for SQLAlchemy

Common lists for coc.nvim

✨ A collection of awesome companies offering free/discounted plans for eligible startups

Rescope is a tool geared towards pentesters and bugbounty researchers, that aims to make life easier when defining scopes for Burp Suite and OWASP ZAP.

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

Repositório com conteúdo sobre web hacking em português

A domain searcher named GoogleSSLdomainFinder - 基于谷歌SSL透明证书的子域名查询工具

🌅 Awesome things related with choo framework

List of articles related to deep learning applied to music