xer0dayz

1N3

Founder of Sn1perSecurity LLC. Creator of Sn1per and SILENTCHAIN AI. Top 20 worldwide on @BugCrowd in 2016. OSCE/OSCP/CISSP/Security+

Sn1perSecurity LLC

https://sn1persecurity.com

Languages

Shell47%Python32%BlitzBasic5%C5%PowerShell5%Go5%

Top Repositories

Attack Surface Management Platform

IntruderPayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

Automatically brute force all services running on a target.

Find exploits in local and online databases instantly

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

Repositories

36

Quickly analyze and reverse engineer Android packages

Shell839175Updated 5 hours ago

analyzeandroidapkdecompilehackingjavalinuxmobilepentestpentestingreverse-engineeringsmali

Attack Surface Management Platform

Shell9.5k2.0kUpdated 6 hours ago

attack-surfaceattack-surface-managementattacksurfacebugbounty-platformcybersecurityhackinghacking-toolsosint-frameworkosint-toolpenetration-testingpentest-scriptspentest-toolpentest-toolspentestingpentesting-toolssecuritysecurity-toolssn1persn1per-professional

Automatically brute force all services running on a target.

Shell2.2k632Updated 7 hours ago

brutebrute-forcebruteforcebruteforce-attacksbruteforcingbugbountyhacking

1N3/IntruderPayloads

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

BlitzBasic3.9k1.2kUpdated 5 days ago

attackbugbountyburpsuiteburpsuite-engagementburpsuite-intruderfuzzfuzz-listsfuzzinginjectionintruderpayloadssql-injection

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Python1.8k390Updated 1 week ago

activeapplicationautomatedbugbountycsrffuzzerlfiosintowasppassivepythonrcerfiscanscannerspidersqlivulnerabilitywebxss

Find exploits in local and online databases instantly

Shell1.8k335Updated 1 week ago

bugbountyexploitdbexploitsfindhackersmetasploitnmappentestsearch

1N3/forbiddenFork

Bypass 4xx HTTP response status codes and more. Based on PycURL.

165Updated 1 week ago

A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.

C985313Updated 2 weeks ago

bugbountyexploitshackinglinuxmysqlpentestingprivescsqlwindows

1N3/Wordpress-XMLRPC-Brute-Force-Exploit

Wordpress XMLRPC System Multicall Brute Force Exploit (0day) by 1N3 @ CrowdShield

Python493200Updated 2 weeks ago

0dayexploitpocwordpresswordpress-xmlrpcxml-rpc

1N3/SILENTCHAINFork

AI-powered vulnerability scanner extension for Burp Suite with multi-provider support (Ollama, OpenAI, Claude, Gemini)

50Updated 3 weeks ago

1N3/AttackSurfaceManagement

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Shell9821Updated 4 weeks ago

attack-surfaceattacksurfaceautomatedbugbountybugbounty-platformbugbounty-toolcybersecurityhacking-toolhacking-toolsosintpenetration-testingpenetration-testing-frameworkpenetration-testing-toolsreconnaissanceredteam-toolsvulnerability-managementvulnerability-scanners

A collection of data exfiltration scripts for Red Team assessments.

PowerShell9636Updated 4 weeks ago

dataexfilexfiltrationhackingpowershellredteamredteamingscriptscriptstooltools

Automatically Launch Google Hacking Queries Against A Target Domain

Shell740181Updated 1 month ago

automatedghdbgooglehackingosintpentestpentestingqueries

Sr. Penetration Tester. Creator of Sn1per. Top 20 worldwide on @BugCrowd in 2016. OSCE/OSCP/CISSP/Security+

277Updated 1 month ago

MassBleed SSL Vulnerability Scanner

Shell245108Updated 1 month ago

1N3/HTTPoxyScan

HTTPoxy Exploit Scanner by 1N3 @CrowdShield

Python10442Updated 1 month ago

A small python script to check for Cross-Site Tracing (XST)

Python13360Updated 1 month ago

Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity

Python205102Updated 2 months ago

0day1n3bug-bountiescrowdshieldctfcveexploitspoc

1N3/servicelensFork

ServiceLens is a Python tool for analyzing services linked to Microsoft 365 domains. It scans DNS records like SPF and DMARC to identify services, categorizing them into Email, Cloud, Security, and more.

30Updated 2 months ago

DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it

Go139Updated 2 months ago

In-depth Attack Surface Mapping and Asset Discovery

133Updated 2 months ago

1N3/CloudHunter

Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them

Python3622Updated 3 months ago

1n3amazonawsbucketscloudcloudfrontcloudhuntercnamednspublics3scannersecurity

An automated Wireless RogueAP MITM attack framework.

Shell18656Updated 3 months ago

802-1xautomatedbypassframeworkhstsinterceptkalikarmalinuxmanamitmpentestpentestingsecuritytooltoolswireless

1N3/CTF-Writeups

CTF Writeups

1611Updated 3 months ago

ctfctf-writeupsctfsexploitexploitssolutionswriteups

1N3/SuperMicro-Password-Scanner

Supermicro IPMI/BMC Cleartext Password Scanner

Shell4032Updated 5 months ago

1N3/massdnsFork

A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)

80Updated 5 months ago

S3 bucket enumerator

33Updated 5 months ago

1N3/rapiddnsFork

Rapidly enumerate subdomains and domains using rapiddns.io.

72Updated 5 months ago

1N3/github-endpointsFork

Find endpoints on GitHub.

32Updated 5 months ago

1N3/IPGeoLocationFork

Retrieve IP Geolocation information

124Updated 5 months ago

Gists

Recent Activity