Mantra – Tool to Find API key Leaks in JS Files & Pages
Tool to find sensitive information from JS files The tool in question was created in Go and its main objective is to search for API keys in JavaScript files and…
Read more »
Assetfinder – Tool to Discover Facing Assets for Target Domain
Assetfinder Assetfinder is a powerful open-source tool used for discovering and mapping internet-facing assets for a target domain. It can be used to identify subdomains, IP addresses, and other online…
Read more »
HTTPX – Multi-purpose HTTP Toolkit
HTTPX is a popular tool for bug bounty hunters that provides a fast and efficient way to scan web applications for security vulnerabilities. It is a lightweight and powerful HTTP…
Read more »
Nuclei – Automated Vulnerability Scanner Tool
Nuclei Hacking Tool: Enhancing Cybersecurity with Automated Scanning Cybersecurity is a critical aspect of our digital age, and it is essential to have the right tools to ensure the safety…
Read more »
MetaFinder – Tool for Searching Documents in a Domain
Overview MetaFinder is a tool to find documents in a website or domain. This tool is using Search Engines (Google, Bing and Baidu) to Search for documents in a domain….
Read more »
Dirsearch – Web Content Discovery Scanner
To find known misconfigurations, juicy APIs or endpoints, sensitive data exposure, config file, etc. It could be used as a part of web content discovery, to scan passively for high-quality…
Read more »
IntruderPayloads – Collection of Burpsuite Intruder Payloads For Bug Hunting
IntruderPayloads A collection of Burpsuite Intruder payloads, BurpBounty payloads (https://github.com/wagiro/BurpBounty), fuzz lists and pentesting methodologies. To pull down all 3rd party repos, run install.sh in the same directory of the…
Read more »