Attack Surface Management Platform

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

Rockyou for web fuzzing

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advan…

Asset inventory of over 800 public bug bounty programs.

Open Redirect Payloads

A collection of regexes for every possbile use

Domains Blacklist for Squid-Cache

Master script for web reconnaissance

A Bash script for automated nuclei dast scanning by using passive urls

A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vectors (XSS, Nuclei, SQLi etc...)

A powerful and sophisticated tool for detecting and exploiting open redirect vulnerabilities using the sed utility and a selected list of carefully crafted payloads with encoding techniques.