A toolset for performing recon and exploiting an Azure AD instance.
An Azure AD Recon and Exploitation Framework
OSINT tools to view/archive a site without accessing it
OSINT Tools for creating a PDF of a website without you ever having to visit the site!
Insanely powerful wordlist generator – MUST HAVE for Web App Pen Tests and Bug Bounties
Extremely useful and impressive wordlist generator and much more; cook.
WAF Payload Generator for Web App Pen Tests + Bug Bounty
Tool for bypassing WAFs using permutations and combinations of the payloads you already have.
Holy Smokes Batman! Another big repo of Bug Bounty Reports, Cheat sheets, Checklists and more!
Another Repo of Web Application and API Bug Bounty, Penetration test and security assessment documents, reports and more!
Check Host Information such as open ports from Shodan WITHOUT an API key!
A new OSINT tool to check for information about a host from Shodan without an API key!
Custom Formula CSV XLS XLSX Injection Wordlist
Created my own Formula/CSV/XLS/XLSX formula injection wordlist and added it to TreeHouse wordlists!
How to Find the next BIG Data Leak in under 20 minutes or less!
Step by step instructions for finding the next data leak!
How to pipe terminal output to your clipboard! (And Vice Versa)
How to copy terminal output to your clipboard and your clipboard to your terminal on OSX and Kali!
Top 62 Shodan Web Application Firewall (WAF) Search Tags
A new wordlist added to TreeHouse Wordlists! the top 62 WAF tags used for Shodan dorking!