Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
*Please contribute through pull requests- ;)
Another great list: awesome-incident-response
OSINT framework focused on gathering information from free tools or resources.
h8mail: Password Breach Hunting & Email OSINT tool, locally or using premium services. Supports chasing down related email
PwnBin: Python Pastebin Webcrawler that returns list of public pastebins containing keywords
ODBParser: OSINT tool to search, parse and dump only the open Elasticsearch and MongoDB directories.
pastego: Scrape/Parse Pastebin using GO and expression grammar (PEG)
Instagram Scraper: Scrapes an instagram user's photos and videos
galer: A fast tool to fetch URLs from HTML attributes by crawl-in.
SpyScrap: CLI and GUI for OSINT. Are you very exhibited on the Internet? Check it! Twitter, Tinder, Facebook, Google, Yandex, BOE. It uses facial recognition to provide more accurate results.F
pwnedOrNot OSINT Tool for Finding Passwords of Compromised Email Addresses.
dorking (how to find anything on the Internet)
Complete Google Dorks List in 2020 For Ethical Hacking and Penetration Testing
Some google Dorks examples: ```# example site:trello.com intext:password
"Please log in with router's password"
```
DorkGenius: Generate custom dorks for Google, Bing, DuckDuckGo, & more!
telegram-cli
for Telegram IM. '';!--"<XSS>=&{()}
<IMG SRC="javascript:alert('XSS');">
<IMG SRC="jav	ascript:alert('XSS');">
<IMG SRC="jav
ascript:alert('XSS');">
<IMG SRC="jav
ascript:alert('XSS');">
<INPUT TYPE="IMAGE" SRC="javascript:alert('XSS');">
<svg
onload=alert%26%230000000040
"1")>
SELECT-1e1FROM`test`
SELECT~1.FROM`test`
SELECT\NFROM`test`
SELECT@^1.FROM`test`
SELECT-id-1.FROM`test`
jaVasCript:/*-/*`/*\`/*'/*"/**/( oNcliCk=alert() )//%0D%0a%0d%0A//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e
curl -s URL | grep -Po "(\/)((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)*((?:[a-zA-Z\-_\:\.0-9\{\}]+))(\/)((?:[a-zA-Z\-_\/\:\.0-9\{\}]+))" | sort -u
𒀀='',𒉺=!𒀀+𒀀,𒀃=!𒉺+𒀀,𒇺=𒀀+{},𒌐=𒉺[𒀀++],
𒀟=𒉺[𒈫=𒀀],𒀆=++𒈫+𒀀,𒁹=𒇺[𒈫+𒀆],𒉺[𒁹+=𒇺[𒀀]
+(𒉺.𒀃+𒇺)[𒀀]+𒀃[𒀆]+𒌐+𒀟+𒉺[𒈫]+𒁹+𒌐+𒇺[𒀀]
+𒀟][𒁹](𒀃[𒀀]+𒀃[𒈫]+𒉺[𒀆]+𒀟+𒌐+"(𒀀)")()
XSS Hunter allows you to find all kinds of cross-site scripting vulnerabilities, including the often-missed blind XSS. The service works by hosting specialized XSS probes which, upon firing, scan the page and send information about the vulnerable page to the XSS Hunter service. xss hunter shortcut
DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
CORS:
SSRF:
XXE:
Serialization:
Orange: How I Chained 4 vulnerabilities on GitHub Enterprise, From SSRF Execution Chain to RCE!
code white | Blog: Liferay Portal JSON Web Service RCE Vulnerabilities
GraphQL: Common vulnerabilities & how to exploit them. apis guru for graphql:  Represent any GraphQL API as an interactive graph.
GraphQL Voyager: 🛰️ Represent any GraphQL API as an interactive graph
GraphQLmap: GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes.
GraphQL:
Orange: How I Chained 4 vulnerabilities on GitHub Enterprise, From SSRF Execution Chain to RCE!
code white | Blog: Liferay Portal JSON Web Service RCE Vulnerabilities
CSM_Pocs: Cisco Security Manager is an enterprise-class security management application that provides insight into and control of Cisco security and network devices.
DSSS, Damn Small SQLi Scanner is a fully functional SQL injection vulnerability scanner (supporting GET and POST parameters) written in under 100 lines of code.
Garud: An automation tool that scans sub-domains, sub-domain takeover and then filters out xss, ssti, ssrf and more injection point parameters.
httpx is a fast and multi-purpose HTTP toolkit allow to run multiple probers using retryablehttp library, it is designed to maintain the result reliability with increased threads.
waybackurls: Fetch all the URLs that the Wayback Machine knows about for a domain
Awesome Electron.js hacking & pentesting resources: A curated list of awesome resources about Electron.js (in)security.
Turbo Search: The most powerfull Web Content Scanner
Coordinated disclosure of XML round-trip vulnerabilities in Go’s standard library
posta: 🐙 Cross-document Messaging security research tool. Cross document messaging is a very common communication method.
JWT Vulnerabilities (Json Web Tokens). The JSON Web Token Toolkit v2
Hacking Starbucks and Accessing Nearly 100 Million Customer Records
OAuth 2.0 Hacking Simplified — Part 2 — Vulnerabilities and Mitigation
Fugu API Tracker: The capabilities project, also known as Project Fugu, is a cross-company effort to make it possible for web apps to do anything iOS, Android, or desktop apps can, by exposing the capabilities of these platforms to the web while maintaining user security, privacy, trust, and other core tenets of the web.
XS-Leaks: Cross-site leaks (aka XS-Leaks, XSLeaks) are a class of vulnerabilities derived from side-channels 1 built into the web platform. They take advantage of the web’s core principle of composability, which allows websites to interact with each other, and abuse legitimate mechanisms 2 to infer information about the user. One way of looking at XS-Leaks is to highlight their similarity with cross-site request forgery (CSRF 3) techniques, with the main difference being that instead of allowing other websites to perform actions on behalf of a user, XS-Leaks can be used to infer information about a user.
Web Finder: tool that searchs IP addresses which answers some URL.
Flask Unsign: Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
jwt-pwn: Security Testing Scripts for JWT.
You can find these bitmaps at this location: %APPDATALOCAL%\Microsoft\Terminal Server Client\Cache\
rundll32.exe comsvcs.dll, MiniDump (Get-Process lsass).Id Temp\<NAME>.dmp full;Wait-Process -Id (Get-Process rundll32).id
Some good places to visit: