A somewhat curated list of links to various topics in application security.
| Link | Excerpt | Word Count |
|---|---|---|
| leebaird/discover | Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux. | 835 |
| m0rtem/CloudFail | CloudFail is a tactical reconnaissance tool which aims to gather enough information about a target protected by Cloudflare in the hopes of discovering the location of the server. Using Tor to mask all requests, the tool as of right now has 3 different attack phases. | 298 |
| Ekultek/Zeus-Scanner | Zeus is an advanced reconnaissance utility designed to make web application reconnaissance simple. | 1179 |
| SimplySecurity/SimplyEmail | SimplyEmail was built arround the concept that tools should do somthing, and do that somthing well, hence 'Simply'. Full documentation can be found at: | 103 |
| s0md3v/Arjun | Arjun can find query parameters for URL endpoints. If you don't get what that means, it's okay, read along. | 259 |
| s0md3v/ReconDog | Recon Dog will run on anything that has a python interpreter installed. However, it has been tested on the following configurations: Recon Dog requires no manual configuration and can be simply run as a normal python script. | 387 |
| s0md3v/Striker | Striker 2.0 is still in prototype phase, which means it's not intended to be used by regular users. It has been made public for contrbutions to make the development faster.Usage: python3 striker.py example.com | 168 |
| redhuntlabs/Awesome-Asset-Discovery | Asset Discovery is the initial phase of any security assessment engagement, be it offensive or defensive. With the evolution of information technology, the scope and definition of assets has also evolved. | 1101 |
| BishopFox/GitGot | GitGot is a semi-automated, feedback-driven tool to empower users to rapidly search through troves of public data on GitHub for sensitive secrets. During search sessions, users will provide feedback to GitGot about search results to ignore, and GitGot prunes the set of results. | 594 |
| https://hakin9.org/xctr-hacking-tools-all-in-one-for-information-gathering/ | 0 | |
| x.com | 0 |