Sandeep Singh

🚀 Curated collection of Amazing Python scripts from Basics to Advance with automation task scripts.

XRay is a tool for recon, mapping and OSINT gathering from public networks.

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Tool for making it easy to collect dns results from the CLI

Search Google/Bing/Ecosia/DuckDuckGo/Yandex/Yahoo for a search term with a default set of websites, bug bounty programs or a custom collection.

"Can I take over DNS?" — a list of DNS providers and how to claim (sub)domains via missing hosted zones

Nuclei-AI-Prompts

A utility to detect various technology for a given IP address.

DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover

A subdomain enumeration tool.

Record terminal sessions as SVG animations

Fleex allows you to create multiple VPS on cloud providers and use them to distribute your workload.

Notify is a Go-based assistance package that enables you to stream the output of several tools (or read from a file) and publish it to a variety of supported platforms.

A list of open source web security scanners

Utility program to perform multiple operations for a given subnet/CIDR ranges.

A collection of hacks and one-off scripts

Web Client for Interactsh

cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vulnerabilities & PoCs

A tool to evaluate Content Security Policies.

Axeman is a utility to retrieve certificates from Certificate Transparency Lists (CTLs)

dockerfiles

Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place

侦查守卫(ObserverWard)的指纹库

A powerful cross-platform UI toolkit for building native-quality iOS, Android, and Progressive Web Apps with HTML, CSS, and JavaScript.

No description.

Python utility to takeover domains vulnerable to AWS NS Takeover

This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for reports

A browser extension for OSINT search

Unleash the power of cloud

Nuclei Templates Directory

In-depth Attack Surface Mapping and Asset Discovery

A list of cloud ranges from different providers.

A Go implementation of dirsearch.

OpenBugBounty - https://www.openbugbounty.org/ programs list

The simple tool to keep in sync labels and milestones across many repositories, organizations, or even GitHub instances.

OpenSource Poc && Vulnerable-Target Storage Box.

No description.

No description.

A LLM guide to fingerprinting software

DiffRays is a research-oriented tool for binary patch diffing, designed to aid in vulnerability research, exploit development, and reverse engineering.

Second-order subdomain takeover scanner

A permutation generation tool written in golang

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

List of open source communities living on Discord

Fast and customizable vulnerability scanner based on simple YAML based DSL.

A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

security.txt collection of most popular world-wide domains

Burpsuite plugin for Interact.sh

Nuclei Templates to reproduce Cracking the lens's Research

Generate mega-workflows using Wappalyzer outputs and existing tech-detect

No description.

A bash script that fetches and maintains thousands of DNS resolvers

AWS,AZURE,GOOGLE CLOUD IP CIDRS

No description.

AI Code Security Anti-Patterns distilled from 150+ sources to help LLMs generate safer code.

LLM-based automated patch diffing

XBOW Validation Benchmarks

The tool queries the OpenAI API to enhance the description, impact, and recommendation keys of a nuclei template.

🍻 Default formulae for the missing package manager for macOS (or Linux)

Interactsh deployment to AWS EC2 Instance with Terraform

This Action will automate the process of building and depolying react app to gh-pages.

vinayaka is a cryptocurrency futures trading bot.

Intercontinental VM Migration using Storage Snapshot through GCP Internal Private Network by Terraform scripting

My Github Profile README

Continuous recon and vulnerability assessment using Github Actions.

✨ Recognize all contributors, not just the ones who push code ✨

Terraform provider for New Relic

No description.

此项目将不定期从棱角社区对外进行公布一些最新漏洞。

WackoPicko is a vulnerable web application used to test web application vulnerability scanners.

Shopware 6 is an open source eCommerce platform realised by the ideas and the spirit of its community.

快速搭建各种漏洞环境(Various vulnerability environment)

Documentation for reNgine

Simple websites vulnerable to Server Side Template Injections(SSTI)

myscan 被动扫描

:steam_locomotive::train: - sturdy 4kb frontend framework

⭐️ Repositorio oficial de Angular Medellín ⭐️

Hostile Subdomain Takeover tool written in Go

pwm

A list of Domain Frontable Domains by CDN