OSINT tools and more but without API key

Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting

jshunter is a command-line tool designed for analyzing JavaScript files and extracting endpoints. This tool specializes in identifying sensitive data, such as API endpoints and potential security vulnerabilities, making it an essential resource for and bug bounty hunters and security researchers.

Generate tens of thousands of subdomain combinations in a matter of seconds

CloudFlare Checker written in Go

Make URL path combinations using a wordlist

PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.

🐰 Managing command snippets for hackers/bug bounty hunters. with pet.

Dump all available paths and/or endpoints on WADL file.

An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.

All the members of bugbounty and infosec. If you don't know who to follow, see!

FourOhMe is a tool for testing HTTP headers on a website in order to try to bypass 40* HTTP codes. Written in Go, so easy to install and fast out of the box.

Parameter Extractor written in golang

A tool which enhances fuzzing with date-formatted log file names.

Tools for checking the accessibility of Google Calendar URLs, downloading their content, and analyzing them for sensitive information.