bugbounty-cheatsheet by EdOverflow

A list of interesting payloads, tips and tricks for bug bounty hunters.

created at July 13, 2017, 4:50 p.m.

236 +0

5,576 +10

1,512 +1

de4dot by de4dot

.NET deobfuscator and unpacker.

created at Sept. 20, 2011, 1:50 a.m.

513 +0

6,752 +1

2,646 +3

capstone by capstone-engine

Capstone disassembly/disassembler framework for ARM, ARM64 (ARMv8), Alpha, BPF, Ethereum VM, HPPA, M68K, M680X, Mips, MOS65XX, PPC, RISC-V(rv32G/rv64G), SH, Sparc, SystemZ, TMS320C64X, TriCore, Webassembly, XCore and X86.

created at Nov. 27, 2013, 2:32 a.m.

303 +0

7,075 +12

1,508 +3

Empire by EmpireProject

Empire is a PowerShell and Python post-exploitation agent.

created at Aug. 5, 2015, 6:25 p.m.

490 +0

7,306 +6

2,781 +2

retdec by avast

RetDec is a retargetable machine-code decompiler based on LLVM.

created at Dec. 12, 2017, 9:04 a.m.

240 +0

7,793 +7

930 +2

Dependencies by lucasg

A rewrite of the old legacy software "depends.exe" in C# for Windows devs to troubleshoot dll load dependencies issues.

created at June 25, 2017, 3 p.m.

148 +0

8,228 +27

679 +2

js-beautify by beautifier

Beautifier for javascript

created at Dec. 4, 2008, 6:35 a.m.

213 +0

8,475 +5

1,360 +0

subfinder by projectdiscovery

Fast passive subdomain enumeration tool.

created at March 31, 2018, 9:44 a.m.

153 +0

9,434 +37

1,199 +1

juice-shop by juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

created at Sept. 19, 2014, 2:53 p.m.

156 +0

9,631 +42

9,477 +78

binwalk by ReFirmLabs

Firmware Analysis Tool

created at Nov. 15, 2013, 8:45 p.m.

368 -1

10,215 +21

1,475 +2

movies-for-hackers by k4m4

🎬 A curated list of movies every hacker & cyberpunk must watch.

created at Feb. 19, 2017, 3:24 p.m.

386 +0

10,318 +9

886 +0

amass by owasp-amass

In-depth attack surface mapping and asset discovery

created at July 10, 2018, 4:05 p.m.

208 +0

11,294 +49

1,828 +3

PowerSploit by PowerShellMafia

PowerSploit - A PowerShell Post-Exploitation Framework

created at May 26, 2012, 4:08 p.m.

781 +0

11,528 +27

4,576 +1

dex2jar by pxb1988

Tools to work with android .dex and java .class files

created at March 16, 2015, 9:13 a.m.

440 +0

11,922 +17

2,072 +2

zaproxy by zaproxy

The ZAP core project

created at June 3, 2015, 4:55 p.m.

395 +0

12,072 +30

2,196 +3

RustScan by RustScan

🤖 The Modern Port Scanner 🤖

created at July 11, 2020, 8 p.m.

128 +1

12,748 +68

853 +1

jd-gui by java-decompiler

A standalone Java Decompiler GUI

created at March 25, 2015, 5:28 a.m.

512 +0

13,601 +17

2,343 +1

Ciphey by Ciphey

⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡

created at July 16, 2019, 8:20 p.m.

236 +0

17,192 +83

1,089 +2

mimikatz by gentilkiwi

A little tool to play with Windows security

created at April 6, 2014, 6:30 p.m.

912 +0

18,801 +32

3,580 +10

radare2 by radareorg

UNIX-like reverse engineering framework and command-line toolset

created at July 3, 2012, 7:42 a.m.

483 +0

19,726 +48

2,939 +1