PushkraJ

Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not

this repo contains all nuclei templates for particular vulnerability that i used mosty while hunting..

Fuzz for SSRF in a given URL.

No description provided.

the POC of package.json RCE

A single script for all the tools you need for bug bounty

subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains. It fetches subdomains from various sources [crtsh, hackertargetapi, anubis, alienvault, rappiddns, urlscan ] , saves them to a SQLite database, and can notify updates via Discord.

Mining URLs from Dark Corners of Web Archives for bug hunting / Fuzzing/ Further probing

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

NucleiFuzzer is a Powerful Automation Tool for Detecting XSS , SQLI , SSRF , Open-Redirect etc.. Vulnerabilities in Web Applications

An automated NMAP python script

JScripter is a Python script designed to scrape and save unique JavaScript files from a list of URLs or a single URL.

A passive way to find backups/ sensitive information.

No description provided.

No description provided.

Subdomain-Takeover Deface

🎓 Udemy downloader with DRM support.

No description provided.

Config files for my GitHub profile.

Swagger UI HTMLi

Swagger UI XSS

No description provided.

A modern tool written in Python that automates your xss findings.

No description provided.

SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.

No description provided.

Bxss Sniper: A web application penetration testing tool for Blind XSS detection

No description provided.

No description provided.

Devaralan is a root domain permutation tool that generates root domain variations by adding prefixes and suffixes using predefined keywords