This commit is contained in:
hahwul 2022-08-16 20:42:23 +09:00
parent efb478945f
commit b033717d4a
297 changed files with 4052 additions and 37 deletions

View File

@ -44,6 +44,12 @@ def get_urls str
return URI.extract(str).uniq
end
def get_lang url
if url.include? "https://github.com"
end
end
def migrate jsonfile, category
file = File.read(jsonfile)
data_hash = JSON.parse(file)
@ -73,7 +79,7 @@ def migrate jsonfile, category
# Save yaml file
puts filename
#File.write("./weapons/#{filename}", yaml_data)
File.write("./weapons/#{filename}", yaml_data)
end
end

View File

@ -1,4 +0,0 @@
## Thanks to (Contributor)
I would like to thank everyone who helped with this project 👍😎
![](/CONTRIBUTORS.svg)

View File

@ -1,32 +0,0 @@
<h1 align="center">
<br>
<a href=""><img src="https://user-images.githubusercontent.com/13212227/104400969-9f3d9280-5596-11eb-80f4-864effae95fc.png" alt="" width="500px;"></a>
<br>
<img src="https://img.shields.io/github/languages/top/hahwul/WebHackersWeapons?style=flat">
<img src="https://img.shields.io/github/last-commit/hahwul/WebHackersWeapons?style=flat">
<img src="https://img.shields.io/badge/PRs-welcome-cyan">
<img src="https://github.com/hahwul/WebHackersWeapons/workflows/Build/badge.svg">
<img src="https://github.com/hahwul/WebHackersWeapons/workflows/CodeQL/badge.svg">
<a href="https://twitter.com/intent/follow?screen_name=hahwul"><img src="https://img.shields.io/twitter/follow/hahwul?style=flat&logo=twitter"></a>
</h1>
A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
## Family project
[![WebHackersWeapons](https://img.shields.io/github/stars/hahwul/WebHackersWeapons?label=WebHackersWeapons)](https://github.com/hahwul/WebHackersWeapons)
[![MobileHackersWeapons](https://img.shields.io/github/stars/hahwul/MobileHackersWeapons?label=MobileHackersWeapons)](https://github.com/hahwul/MobileHackersWeapons)
## Table of Contents
- [WHW-Tools](https://whw-tools.hahwul.com)
- [Weapons](#weapons)
- [Awesome Bookmarklets](https://github.com/hahwul/WebHackersWeapons/tree/master/Bookmarklets)
- [Awesome Browser Extensions](https://github.com/hahwul/WebHackersWeapons/tree/master/Browser%20Extensions)
- [Awesome Burp and ZAP Extensions](https://github.com/hahwul/WebHackersWeapons/tree/master/Burp%20and%20ZAP%20Extensions)
- [Contribute](https://github.com/hahwul/WebHackersWeapons/blob/master/CONTRIBUTING.md)
- [Thanks to contributor](#thanks-to-contributor)
## WHW-Tools
> Always use the latest tools 😎
`WHW-Tools` is tools web of `#WebHackersWeapons`. Easy install and Easy manage upgrade. Go to [WHW-Tools](https://whw-tools.hahwul.com/)
## Weapons

12
weapons/230-OOB.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: 230-OOB
description: An Out-of-Band XXE server for retrieving file contents over FTP.
urls:
- https://github.com/lc/230-OOB)
- https://img.shields.io/github/stars/lc/230-OOB)
- https://img.shields.io/github/languages/top/lc/230-OOB)
category: tool
types: []
platform: []
lang: []
tags: []

13
weapons/3klCon.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: 3klCon
description: Automation Recon tool which works with Large & Medium scopes. It performs
more than 20 tasks and gets back all the results in separated files.
urls:
- https://github.com/eslam3kl/3klCon)
- https://img.shields.io/github/stars/eslam3kl/3klCon)
- https://img.shields.io/github/languages/top/eslam3kl/3klCon)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: AWSBucketDump
description: Security Tool to Look For Interesting Files in S3 Buckets
urls:
- https://github.com/jordanpotti/AWSBucketDump)
- https://img.shields.io/github/stars/jordanpotti/AWSBucketDump)
- https://img.shields.io/github/languages/top/jordanpotti/AWSBucketDump)
category: tool
types: []
platform: []
lang: []
tags: []

14
weapons/Amass.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: Amass
description: 'In-depth Attack Surface Mapping and Asset Discovery '
urls:
- https://github.com/OWASP/Amass)
- https://img.shields.io/github/stars/OWASP/Amass)
- https://img.shields.io/github/languages/top/OWASP/Amass)
category: tool
types: []
platform:
- linux
- macos
lang: []
tags: []

15
weapons/Arjun.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Arjun
description: 'HTTP parameter discovery suite. '
urls:
- https://github.com/s0md3v/Arjun)
- https://img.shields.io/github/stars/s0md3v/Arjun)
- https://img.shields.io/github/languages/top/s0md3v/Arjun)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,15 @@
---
name: Assetnote Wordlists
description: Automated & Manual Wordlists provided by Assetnote
urls:
- https://github.com/assetnote/wordlists)
- https://img.shields.io/github/stars/assetnote/wordlists)
- https://img.shields.io/github/languages/top/assetnote/wordlists)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/Atlas.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Atlas
description: 'Quick SQLMap Tamper Suggester '
urls:
- https://github.com/m4ll0k/Atlas)
- https://img.shields.io/github/stars/m4ll0k/Atlas)
- https://img.shields.io/github/languages/top/m4ll0k/Atlas)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

13
weapons/AuthMatrix.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: AuthMatrix
description:
urls:
- https://github.com/SecurityInnovation/AuthMatrix)
- https://img.shields.io/github/stars/SecurityInnovation/AuthMatrix)
- https://img.shields.io/github/languages/top/SecurityInnovation/AuthMatrix)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

13
weapons/Autorize.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: Autorize
description:
urls:
- https://github.com/Quitten/Autorize)
- https://img.shields.io/github/stars/Quitten/Autorize)
- https://img.shields.io/github/languages/top/Quitten/Autorize)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

12
weapons/Blacklist3r.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: Blacklist3r
description: 'project-blacklist3r '
urls:
- https://github.com/NotSoSecure/Blacklist3r)
- https://img.shields.io/github/stars/NotSoSecure/Blacklist3r)
- https://img.shields.io/github/languages/top/NotSoSecure/Blacklist3r)
category: tool
types: []
platform: []
lang: []
tags: []

12
weapons/BruteX.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: BruteX
description: Automatically brute force all services running on a target.
urls:
- https://github.com/1N3/BruteX)
- https://img.shields.io/github/stars/1N3/BruteX)
- https://img.shields.io/github/languages/top/1N3/BruteX)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: Bug-Bounty-Toolz
description: 'BBT - Bug Bounty Tools '
urls:
- https://github.com/m4ll0k/Bug-Bounty-Toolz)
- https://img.shields.io/github/stars/m4ll0k/Bug-Bounty-Toolz)
- https://img.shields.io/github/languages/top/m4ll0k/Bug-Bounty-Toolz)
category: tool
types: []
platform: []
lang: []
tags: []

13
weapons/BurpBounty.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: BurpBounty
description:
urls:
- https://github.com/wagiro/BurpBounty)
- https://img.shields.io/github/stars/wagiro/BurpBounty)
- https://img.shields.io/github/languages/top/wagiro/BurpBounty)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: BurpCustomizer
description: Because just a dark theme wasn't enough!
urls:
- https://github.com/CoreyD97/BurpCustomizer)
- https://img.shields.io/github/stars/CoreyD97/BurpCustomizer)
- https://img.shields.io/github/languages/top/CoreyD97/BurpCustomizer)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: BurpJSLinkFinder
description:
urls:
- https://github.com/InitRoot/BurpJSLinkFinder)
- https://img.shields.io/github/stars/InitRoot/BurpJSLinkFinder)
- https://img.shields.io/github/languages/top/InitRoot/BurpJSLinkFinder)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: BurpSuite-Secret_Finder
description:
urls:
- https://github.com/m4ll0k/BurpSuite-Secret_Finder)
- https://img.shields.io/github/stars/m4ll0k/BurpSuite-Secret_Finder)
- https://img.shields.io/github/languages/top/m4ll0k/BurpSuite-Secret_Finder)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

11
weapons/BurpSuite.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: BurpSuite
description: the BurpSuite Project
urls:
- https://portswigger.net/burp)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: BurpSuiteHTTPSmuggler
description:
urls:
- https://github.com/nccgroup/BurpSuiteHTTPSmuggler)
- https://img.shields.io/github/stars/nccgroup/BurpSuiteHTTPSmuggler)
- https://img.shields.io/github/languages/top/nccgroup/BurpSuiteHTTPSmuggler)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: BurpSuiteLoggerPlusPlus
description:
urls:
- https://github.com/nccgroup/BurpSuiteLoggerPlusPlus)
- https://img.shields.io/github/stars/nccgroup/BurpSuiteLoggerPlusPlus)
- https://img.shields.io/github/languages/top/nccgroup/BurpSuiteLoggerPlusPlus)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

View File

@ -0,0 +1,11 @@
---
name: CSP Evaluator
description: " Online CSP Evaluator from google|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://csp-evaluator.withgoogle.com
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: CT_subdomains
description: 'An hourly updated list of subdomains gathered from certificate transparency
logs '
urls:
- https://github.com/internetwache/CT_subdomains)
- https://img.shields.io/github/stars/internetwache/CT_subdomains)
- https://img.shields.io/github/languages/top/internetwache/CT_subdomains)
category: tool
types: []
platform: []
lang: []
tags: []

12
weapons/Chaos_Web.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: Chaos Web
description: " actively scan and maintain internet-wide assets' data. enhance research
and analyse changes around DNS for better insights.|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)"
urls:
- https://chaos.projectdiscovery.io
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: Chromium-based-XSS-Taint-Tracking
description: Cyclops is a web browser with XSS detection feature, it is chromium-based
xss detection that used to find the flows from a source to a sink.
urls:
- https://github.com/v8blink/Chromium-based-XSS-Taint-Tracking)
- https://img.shields.io/github/stars/v8blink/Chromium-based-XSS-Taint-Tracking)
- https://img.shields.io/github/languages/top/v8blink/Chromium-based-XSS-Taint-Tracking)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/CorsMe.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: CorsMe
description: 'Cross Origin Resource Sharing MisConfiguration Scanner '
urls:
- https://github.com/Shivangx01b/CorsMe)
- https://img.shields.io/github/stars/Shivangx01b/CorsMe)
- https://img.shields.io/github/languages/top/Shivangx01b/CorsMe)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/Corsy.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Corsy
description: 'CORS Misconfiguration Scanner '
urls:
- https://github.com/s0md3v/Corsy)
- https://img.shields.io/github/stars/s0md3v/Corsy)
- https://img.shields.io/github/languages/top/s0md3v/Corsy)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

13
weapons/CyberChef.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: CyberChef
description: 'The Cyber Swiss Army Knife - a web app for encryption, encoding, compression
and data analysis '
urls:
- https://github.com/gchq/CyberChef)
- https://img.shields.io/github/stars/gchq/CyberChef)
- https://img.shields.io/github/languages/top/gchq/CyberChef)
category: tool
types: []
platform: []
lang: []
tags: []

11
weapons/DNSDumpster.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: DNSDumpster
description: " Online dns recon & research, find & lookup dns records|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://dnsdumpster.com
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/DOMPurify.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: DOMPurify
description: 'DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for
HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of
configurability and hooks. Demo:'
urls:
- https://github.com/cure53/DOMPurify)
- 'Demo:'
- https://img.shields.io/github/stars/cure53/DOMPurify)
- https://img.shields.io/github/languages/top/cure53/DOMPurify)
category: tool
types: []
platform: []
lang: []
tags: []

12
weapons/DSSS.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: DSSS
description: Damn Small SQLi Scanner
urls:
- https://github.com/stamparm/DSSS)
- https://img.shields.io/github/stars/stamparm/DSSS)
- https://img.shields.io/github/languages/top/stamparm/DSSS)
category: tool
types: []
platform: []
lang: []
tags: []

13
weapons/Dark_Reader.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: Dark Reader
description: Dark mode to any site
urls:
- https://chrome.google.com/webstore/detail/dark-reader/eimadpbcbfnmbkopoojfekhnkhdbieeh)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: browser-addon
types: []
platform:
- chrome
- firefox
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: Dark Reader for Safari
description: Dark mode to any site
urls:
- https://apps.apple.com/us/app/dark-reader-for-safari/id1438243180)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: browser-addon
types: []
platform:
- safari
lang: []
tags: []

12
weapons/DeepViolet.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: DeepViolet
description: Tool for introspection of SSL\TLS sessions
urls:
- https://github.com/spoofzu/DeepViolet)
- https://img.shields.io/github/stars/spoofzu/DeepViolet)
- https://img.shields.io/github/languages/top/spoofzu/DeepViolet)
category: tool
types: []
platform: []
lang: []
tags: []

13
weapons/DirDar.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: DirDar
description: DirDar is a tool that searches for (403-Forbidden) directories to break
it and get dir listing on it
urls:
- https://github.com/M4DM0e/DirDar)
- https://img.shields.io/github/stars/M4DM0e/DirDar)
- https://img.shields.io/github/languages/top/M4DM0e/DirDar)
category: tool
types: []
platform: []
lang: []
tags: []

14
weapons/DotGit.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: DotGit
description: An extension for checking if .git is exposed in visited websites
urls:
- https://github.com/davtur19/DotGit)
- https://img.shields.io/github/stars/davtur19/DotGit)
- https://img.shields.io/github/languages/top/davtur19/DotGit)
category: browser-addon
types: []
platform:
- chrome
- firefox
lang: []
tags: []

View File

@ -0,0 +1,14 @@
---
name: Edit-This-Cookie
description: EditThisCookie is the famous Google Chrome/Chromium extension for editing
cookies
urls:
- https://github.com/ETCExtensions/Edit-This-Cookie)
- https://img.shields.io/github/stars/ETCExtensions/Edit-This-Cookie)
- https://img.shields.io/github/languages/top/ETCExtensions/Edit-This-Cookie)
category: browser-addon
types: []
platform:
- chrome
lang: []
tags: []

13
weapons/Emissary.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: Emissary
description: Send notifications on different channels such as Slack, Telegram, Discord
etc.
urls:
- https://github.com/BountyStrike/Emissary)
- https://img.shields.io/github/stars/BountyStrike/Emissary)
- https://img.shields.io/github/languages/top/BountyStrike/Emissary)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/FavFreak.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: FavFreak
description: 'Making Favicon.ico based Recon Great again ! '
urls:
- https://github.com/devanshbatham/FavFreak)
- https://img.shields.io/github/stars/devanshbatham/FavFreak)
- https://img.shields.io/github/languages/top/devanshbatham/FavFreak)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/Findsploit.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: Findsploit
description: Find exploits in local and online databases instantly
urls:
- https://github.com/1N3/Findsploit)
- https://img.shields.io/github/stars/1N3/Findsploit)
- https://img.shields.io/github/languages/top/1N3/Findsploit)
category: tool
types: []
platform: []
lang: []
tags: []

16
weapons/Gf-Patterns.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: Gf-Patterns
description: 'GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic)
parameters grep '
urls:
- https://github.com/1ndianl33t/Gf-Patterns)
- https://img.shields.io/github/stars/1ndianl33t/Gf-Patterns)
- https://img.shields.io/github/languages/top/1ndianl33t/Gf-Patterns)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/GitMiner.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: GitMiner
description: 'Tool for advanced mining for content on Github '
urls:
- https://github.com/UnkL4b/GitMiner)
- https://img.shields.io/github/stars/UnkL4b/GitMiner)
- https://img.shields.io/github/languages/top/UnkL4b/GitMiner)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

16
weapons/Gopherus.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: Gopherus
description: 'This tool generates gopher link for exploiting SSRF and gaining RCE
in various servers '
urls:
- https://github.com/tarunkant/Gopherus)
- https://img.shields.io/github/stars/tarunkant/Gopherus)
- https://img.shields.io/github/languages/top/tarunkant/Gopherus)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

16
weapons/GraphQLmap.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: GraphQLmap
description: 'GraphQLmap is a scripting engine to interact with a graphql endpoint
for pentesting purposes. '
urls:
- https://github.com/swisskyrepo/GraphQLmap)
- https://img.shields.io/github/stars/swisskyrepo/GraphQLmap)
- https://img.shields.io/github/languages/top/swisskyrepo/GraphQLmap)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

13
weapons/HRS.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: HRS
description: HTTP Request Smuggling demonstration Perl script, for variants 1, 2 and
5 in my BlackHat US 2020 paper HTTP Request Smuggling in 2020.
urls:
- https://github.com/SafeBreach-Labs/HRS)
- https://img.shields.io/github/stars/SafeBreach-Labs/HRS)
- https://img.shields.io/github/languages/top/SafeBreach-Labs/HRS)
category: tool
types: []
platform: []
lang: []
tags: []

14
weapons/HUNT.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: HUNT
description:
urls:
- https://github.com/bugcrowd/HUNT)
- https://img.shields.io/github/stars/bugcrowd/HUNT)
- https://img.shields.io/github/languages/top/bugcrowd/HUNT)
category: tool-addon
types: []
platform:
- burpsuite
- zap
lang: []
tags: []

14
weapons/Hack-Tools.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: Hack-Tools
description: "The all-in-one Red Team extension for Web Pentester \U0001F6E0"
urls:
- https://github.com/LasCC/Hack-Tools)
- https://img.shields.io/github/stars/LasCC/Hack-Tools)
- https://img.shields.io/github/languages/top/LasCC/Hack-Tools)
category: browser-addon
types: []
platform:
- chrome
- firefox
lang: []
tags: []

12
weapons/HydraRecon.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: HydraRecon
description: All In One, Fast, Easy Recon Tool
urls:
- https://github.com/aufzayed/HydraRecon)
- https://img.shields.io/github/stars/aufzayed/HydraRecon)
- https://img.shields.io/github/languages/top/aufzayed/HydraRecon)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: IntruderPayloads
description:
urls:
- https://github.com/1N3/IntruderPayloads)
- https://img.shields.io/github/stars/1N3/IntruderPayloads)
- https://img.shields.io/github/languages/top/1N3/IntruderPayloads)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

14
weapons/JSFScan.sh.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: JSFScan.sh
description: 'Automation for javascript recon in bug bounty. '
urls:
- https://github.com/KathanP19/JSFScan.sh)
- https://img.shields.io/github/stars/KathanP19/JSFScan.sh)
- https://img.shields.io/github/languages/top/KathanP19/JSFScan.sh)
category: tool
types: []
platform:
- linux
- macos
lang: []
tags: []

15
weapons/LFISuite.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: LFISuite
description: 'Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner '
urls:
- https://github.com/D35m0nd142/LFISuite)
- https://img.shields.io/github/stars/D35m0nd142/LFISuite)
- https://img.shields.io/github/languages/top/D35m0nd142/LFISuite)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/LinkFinder.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: LinkFinder
description: 'A python script that finds endpoints in JavaScript files '
urls:
- https://github.com/GerbenJavado/LinkFinder)
- https://img.shields.io/github/stars/GerbenJavado/LinkFinder)
- https://img.shields.io/github/languages/top/GerbenJavado/LinkFinder)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: MM3 ProxySwitch
description: Proxy Switch in Firefox and Chrome
urls:
- https://proxy-offline-browser.com/ProxySwitch/)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: browser-addon
types: []
platform:
- chrome
- firefox
lang: []
tags: []

16
weapons/NoSQLMap.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: NoSQLMap
description: 'Automated NoSQL database enumeration and web application exploitation
tool. '
urls:
- https://github.com/codingo/NoSQLMap)
- https://img.shields.io/github/stars/codingo/NoSQLMap)
- https://img.shields.io/github/languages/top/codingo/NoSQLMap)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/OneForAll.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: OneForAll
description: 'OneForAll是一款功能强大的子域收集工具 '
urls:
- https://github.com/shmilylty/OneForAll)
- https://img.shields.io/github/stars/shmilylty/OneForAll)
- https://img.shields.io/github/languages/top/shmilylty/OneForAll)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/OpenRedireX.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: OpenRedireX
description: A Fuzzer for OpenRedirect issues
urls:
- https://github.com/devanshbatham/OpenRedireX)
- https://img.shields.io/github/stars/devanshbatham/OpenRedireX)
- https://img.shields.io/github/languages/top/devanshbatham/OpenRedireX)
category: tool
types: []
platform: []
lang: []
tags: []

16
weapons/Osmedeus.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: Osmedeus
description: 'Fully automated offensive security framework for reconnaissance and
vulnerability scanning '
urls:
- https://github.com/j3ssie/Osmedeus)
- https://img.shields.io/github/stars/j3ssie/Osmedeus)
- https://img.shields.io/github/languages/top/j3ssie/Osmedeus)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/PPScan.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: PPScan
description: Client Side Prototype Pollution Scanner
urls:
- https://github.com/msrkp/PPScan)
- https://img.shields.io/github/stars/msrkp/PPScan)
- https://img.shields.io/github/languages/top/msrkp/PPScan)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/ParamSpider.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: ParamSpider
description: 'Mining parameters from dark corners of Web Archives '
urls:
- https://github.com/devanshbatham/ParamSpider)
- https://img.shields.io/github/stars/devanshbatham/ParamSpider)
- https://img.shields.io/github/languages/top/devanshbatham/ParamSpider)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/Parth.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Parth
description: 'Heuristic Vulnerable Parameter Scanner '
urls:
- https://github.com/s0md3v/Parth)
- https://img.shields.io/github/stars/s0md3v/Parth)
- https://img.shields.io/github/languages/top/s0md3v/Parth)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: PayloadsAllTheThings
description: 'A list of useful payloads and bypass for Web Application Security and
Pentest/CTF '
urls:
- https://github.com/swisskyrepo/PayloadsAllTheThings)
- https://img.shields.io/github/stars/swisskyrepo/PayloadsAllTheThings)
- https://img.shields.io/github/languages/top/swisskyrepo/PayloadsAllTheThings)
category: tool
types: []
platform: []
lang: []
tags: []

11
weapons/Phoenix.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: Phoenix
description: " hahwul's online tools|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://www.hahwul.com/p/phoenix.html)
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/Photon.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Photon
description: 'Incredibly fast crawler designed for OSINT. '
urls:
- https://github.com/s0md3v/Photon)
- https://img.shields.io/github/stars/s0md3v/Photon)
- https://img.shields.io/github/languages/top/s0md3v/Photon)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: PoC-in-GitHub
description: "\U0001F4E1 PoC auto collect from GitHub. Be careful malware."
urls:
- https://github.com/nomi-sec/PoC-in-GitHub)
- https://img.shields.io/github/stars/nomi-sec/PoC-in-GitHub)
- https://img.shields.io/github/languages/top/nomi-sec/PoC-in-GitHub)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/RustScan.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: RustScan
description: 'Faster Nmap Scanning with Rust '
urls:
- https://github.com/brandonskerritt/RustScan)
- https://img.shields.io/github/stars/brandonskerritt/RustScan)
- https://img.shields.io/github/languages/top/brandonskerritt/RustScan)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/S3Scanner.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: S3Scanner
description: 'Scan for open AWS S3 buckets and dump the contents '
urls:
- https://github.com/sa7mon/S3Scanner)
- https://img.shields.io/github/stars/sa7mon/S3Scanner)
- https://img.shields.io/github/languages/top/sa7mon/S3Scanner)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

11
weapons/SQLNinja.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: SQLNinja
description: " SQL Injection scanner|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://gitlab.com/kalilinux/packages/sqlninja)
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

11
weapons/SQL_Ninja.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: SQL Ninja
description: SQL Injection scanner
urls:
- https://gitlab.com/kalilinux/packages/sqlninja)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/SSRFmap.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: SSRFmap
description: 'Automatic SSRF fuzzer and exploitation tool '
urls:
- https://github.com/swisskyrepo/SSRFmap)
- https://img.shields.io/github/stars/swisskyrepo/SSRFmap)
- https://img.shields.io/github/languages/top/swisskyrepo/SSRFmap)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/STEWS.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: STEWS
description: A Security Tool for Enumerating WebSockets
urls:
- https://github.com/PalindromeLabs/STEWS)
- https://img.shields.io/github/stars/PalindromeLabs/STEWS)
- https://img.shields.io/github/languages/top/PalindromeLabs/STEWS)
category: tool
types: []
platform: []
lang: []
tags: []

18
weapons/SecLists.yaml Normal file
View File

@ -0,0 +1,18 @@
---
name: SecLists
description: 'SecLists is the security tester''s companion. It''s a collection of
multiple types of lists used during security assessments, collected in one place.
List types include usernames, passwords, URLs, sensitive data patterns, fuzzing
payloads, web shells, and many more. '
urls:
- https://github.com/danielmiessler/SecLists)
- https://img.shields.io/github/stars/danielmiessler/SecLists)
- https://img.shields.io/github/languages/top/danielmiessler/SecLists)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

16
weapons/SecretFinder.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: SecretFinder
description: 'SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..)
and search anything on javascript files '
urls:
- https://github.com/m4ll0k/SecretFinder)
- https://img.shields.io/github/stars/m4ll0k/SecretFinder)
- https://img.shields.io/github/languages/top/m4ll0k/SecretFinder)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,11 @@
---
name: SecurityTrails
description: " Online dns / subdomain / recon tool|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://securitytrails.com
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

View File

@ -0,0 +1,11 @@
---
name: SequenceDiagram
description: " Online tool for creating UML sequence diagrams|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://sequencediagram.org
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

11
weapons/Shodan.yaml Normal file
View File

@ -0,0 +1,11 @@
---
name: Shodan
description: " World's first search engine for Internet-connected devices|![](https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray) "
urls:
- https://www.shodan.io/)
- https://img.shields.io/static/v1?label=&message=it%27s%20not%20github&color=gray)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/Silver.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Silver
description: 'Mass scan IPs for vulnerable services '
urls:
- https://github.com/s0md3v/Silver)
- https://img.shields.io/github/stars/s0md3v/Silver)
- https://img.shields.io/github/languages/top/s0md3v/Silver)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/Sn1per.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Sn1per
description: 'Automated pentest framework for offensive security experts '
urls:
- https://github.com/1N3/Sn1per)
- https://img.shields.io/github/stars/1N3/Sn1per)
- https://img.shields.io/github/languages/top/1N3/Sn1per)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

13
weapons/Stepper.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: Stepper
description:
urls:
- https://github.com/CoreyD97/Stepper)
- https://img.shields.io/github/stars/CoreyD97/Stepper)
- https://img.shields.io/github/languages/top/CoreyD97/Stepper)
category: tool-addon
types: []
platform:
- burpsuite
lang: []
tags: []

15
weapons/Striker.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Striker
description: 'Striker is an offensive information and vulnerability scanner. '
urls:
- https://github.com/s0md3v/Striker)
- https://img.shields.io/github/stars/s0md3v/Striker)
- https://img.shields.io/github/languages/top/s0md3v/Striker)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/SubOver.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: SubOver
description: A Powerful Subdomain Takeover Tool
urls:
- https://github.com/Ice3man543/SubOver)
- https://img.shields.io/github/stars/Ice3man543/SubOver)
- https://img.shields.io/github/languages/top/Ice3man543/SubOver)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/Sublist3r.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: Sublist3r
description: 'Fast subdomains enumeration tool for penetration testers '
urls:
- https://github.com/aboul3la/Sublist3r)
- https://img.shields.io/github/stars/aboul3la/Sublist3r)
- https://img.shields.io/github/languages/top/aboul3la/Sublist3r)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

12
weapons/Taipan.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: Taipan
description: Web application vulnerability scanner
urls:
- https://github.com/enkomio/Taipan)
- https://img.shields.io/github/stars/enkomio/Taipan)
- https://img.shields.io/github/languages/top/enkomio/Taipan)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/TukTuk.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: TukTuk
description: 'Tool for catching and logging different types of requests. '
urls:
- https://github.com/ArturSS7/TukTuk)
- https://img.shields.io/github/stars/ArturSS7/TukTuk)
- https://img.shields.io/github/languages/top/ArturSS7/TukTuk)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: User-Agent Switcher
description: quick and easy way to switch between user-agents.
urls:
- https://chrome.google.com/webstore/detail/user-agent-switcher/clddifkhlkcojbojppdojfeeikdkgiae)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: browser-addon
types: []
platform:
- chrome
lang: []
tags: []

17
weapons/VHostScan.yaml Normal file
View File

@ -0,0 +1,17 @@
---
name: VHostScan
description: 'A virtual host scanner that performs reverse lookups, can be used with
pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic
default pages. '
urls:
- https://github.com/codingo/VHostScan)
- https://img.shields.io/github/stars/codingo/VHostScan)
- https://img.shields.io/github/languages/top/codingo/VHostScan)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,12 @@
---
name: Wayback Machine
description: History of website
urls:
- https://apps.apple.com/us/app/wayback-machine/id1472432422)
- https://img.shields.io/static/v1?label=&message=it's%20not%20github&color=gray)
category: browser-addon
types: []
platform:
- safari
lang: []
tags: []

View File

@ -0,0 +1,14 @@
---
name: Web-Cache-Vulnerability-Scanner
description: Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for
web cache poisoning. It is developed by Hackmanit GmbH (http://hackmanit.de/).
urls:
- https://github.com/Hackmanit/Web-Cache-Vulnerability-Scanner)
- http://hackmanit.de/).
- https://img.shields.io/github/stars/Hackmanit/Web-Cache-Vulnerability-Scanner)
- https://img.shields.io/github/languages/top/Hackmanit/Web-Cache-Vulnerability-Scanner)
category: tool
types: []
platform: []
lang: []
tags: []

12
weapons/XSRFProbe.yaml Normal file
View File

@ -0,0 +1,12 @@
---
name: XSRFProbe
description: The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
urls:
- https://github.com/0xInfection/XSRFProbe)
- https://img.shields.io/github/stars/0xInfection/XSRFProbe)
- https://img.shields.io/github/languages/top/0xInfection/XSRFProbe)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/XSStrike.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: XSStrike
description: 'Most advanced XSS scanner. '
urls:
- https://github.com/s0md3v/XSStrike)
- https://img.shields.io/github/stars/s0md3v/XSStrike)
- https://img.shields.io/github/languages/top/s0md3v/XSStrike)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/XSpear.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: XSpear
description: 'Powerfull XSS Scanning and Parameter analysis tool&gem '
urls:
- https://github.com/hahwul/XSpear)
- https://img.shields.io/github/stars/hahwul/XSpear)
- https://img.shields.io/github/languages/top/hahwul/XSpear)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

13
weapons/XXEinjector.yaml Normal file
View File

@ -0,0 +1,13 @@
---
name: XXEinjector
description: Tool for automatic exploitation of XXE vulnerability using direct and
different out of band methods.
urls:
- https://github.com/enjoiz/XXEinjector)
- https://img.shields.io/github/stars/enjoiz/XXEinjector)
- https://img.shields.io/github/languages/top/enjoiz/XXEinjector)
category: tool
types: []
platform: []
lang: []
tags: []

15
weapons/a2sv.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: a2sv
description: 'Auto Scanning to SSL Vulnerability '
urls:
- https://github.com/hahwul/a2sv)
- https://img.shields.io/github/stars/hahwul/a2sv)
- https://img.shields.io/github/languages/top/hahwul/a2sv)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

16
weapons/altdns.yaml Normal file
View File

@ -0,0 +1,16 @@
---
name: altdns
description: 'Generates permutations, alterations and mutations of subdomains and
then resolves them '
urls:
- https://github.com/infosec-au/altdns)
- https://img.shields.io/github/stars/infosec-au/altdns)
- https://img.shields.io/github/languages/top/infosec-au/altdns)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/anew.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: anew
description: A tool for adding new lines to files, skipping duplicates
urls:
- https://github.com/tomnomnom/anew)
- https://img.shields.io/github/stars/tomnomnom/anew)
- https://img.shields.io/github/languages/top/tomnomnom/anew)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/apkleaks.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: apkleaks
description: 'Scanning APK file for URIs, endpoints & secrets. '
urls:
- https://github.com/dwisiswant0/apkleaks)
- https://img.shields.io/github/stars/dwisiswant0/apkleaks)
- https://img.shields.io/github/languages/top/dwisiswant0/apkleaks)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

15
weapons/aquatone.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: aquatone
description: 'A Tool for Domain Flyovers '
urls:
- https://github.com/michenriksen/aquatone)
- https://img.shields.io/github/stars/michenriksen/aquatone)
- https://img.shields.io/github/languages/top/michenriksen/aquatone)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

14
weapons/arachni.yaml Normal file
View File

@ -0,0 +1,14 @@
---
name: arachni
description: 'Web Application Security Scanner Framework '
urls:
- https://github.com/Arachni/arachni)
- https://img.shields.io/github/stars/Arachni/arachni)
- https://img.shields.io/github/languages/top/Arachni/arachni)
category: tool
types: []
platform:
- linux
- macos
lang: []
tags: []

15
weapons/assetfinder.yaml Normal file
View File

@ -0,0 +1,15 @@
---
name: assetfinder
description: 'Find domains and subdomains related to a given domain '
urls:
- https://github.com/tomnomnom/assetfinder)
- https://img.shields.io/github/stars/tomnomnom/assetfinder)
- https://img.shields.io/github/languages/top/tomnomnom/assetfinder)
category: tool
types: []
platform:
- linux
- macos
- windows
lang: []
tags: []

View File

@ -0,0 +1,13 @@
---
name: attack-surface-detector-zap
description:
urls:
- https://github.com/secdec/attack-surface-detector-zap)
- https://img.shields.io/github/stars/secdec/attack-surface-detector-zap)
- https://img.shields.io/github/languages/top/secdec/attack-surface-detector-zap)
category: tool-addon
types: []
platform:
- zap
lang: []
tags: []

Some files were not shown because too many files have changed in this diff Show More