00xZ / eye
My personal pretesting recon/low hanging fruit script. Uses Gxss, Dalfox, and a few other scripts to scan all of a domain(and/or subdomains as well) for user inputs, checks if reflected, tests for sqli, xss, open red. and a few more. This is really just for my personal use.
☆21Updated 3 months ago
Alternatives and similar repositories for eye:
Users that are interested in eye are comparing it to the libraries listed below
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆136Updated 5 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆121Updated 7 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆111Updated 3 months ago
- Helios: Automated XSS Testing☆148Updated 8 months ago
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆146Updated 10 months ago
- Nuclei-AI-Prompts☆182Updated this week
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆146Updated 4 months ago
- ☆196Updated 2 months ago
- ☆118Updated last year
- Automation tool to testing and confirm the xss vulnerability.☆226Updated 2 months ago
- XSSRocket it is a tool designed for offensive security and XSS (Cross-Site Scripting) attacks.☆132Updated 5 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆211Updated this week
- ☆159Updated 5 months ago
- A collection of config files for linux focusing on hackthebox theme☆43Updated 3 months ago
- Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types l…☆127Updated 2 months ago
- ShodanSpider is an open-source tool for interacting with Shodan. It lets you search and extract data from Shodan without an API key, offe…☆128Updated 3 weeks ago
- SecretOpt1c is a Red Team tool that helps uncover sensitive information in websites using ACTIVE and PASSIVE Techniques for Superior Accu…☆225Updated 7 months ago
- This is the open sourced code for the extension, EndPointer☆61Updated 5 months ago
- ☆117Updated 3 weeks ago
- GoogleDorker - Unleash the power of Google dorking for ethical hackers with custom search precision.☆172Updated 3 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆110Updated 5 months ago
- Shodan Dorks☆334Updated last month
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆350Updated last year
- Subprober is a powerful and efficient subdomain scanning tool written in Python. With the ability to handle large lists of subdomains. Th…☆244Updated 3 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆92Updated this week
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆51Updated 3 months ago
- ☆27Updated 9 months ago
- CeWLeR - Custom Word List generator Redefined. CeWL alternative in Python, based on the Scrapy framework.☆102Updated 8 months ago
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vect…☆75Updated 7 months ago
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆148Updated 4 months ago