00xZ / eye
My personal pretesting recon/low hanging fruit script. Uses Gxss, Dalfox, and a few other scripts to scan all of a domain(and/or subdomains as well) for user inputs, checks if reflected, tests for sqli, xss, open red. and a few more. This is really just for my personal use.
β20Updated 3 weeks ago
Related projects β
Alternatives and complementary repositories for eye
- Scripts for offensive securityβ79Updated 2 months ago
- Welcome to the Bug Hunter's Wordlists repository! ππ This repository serves as a comprehensive collection of essential wordlists utilizβ¦β143Updated 6 months ago
- CeWLeR - Custom Word List generator Redefined. CeWL alternative in Python, based on the Scrapy framework.β90Updated 3 months ago
- A utility for quickly and easily locating, web hosting and transferring resources (e.g., exploits/enumeration scripts) from your filesystβ¦β175Updated 4 months ago
- Recon MindMap (RMM)β140Updated 5 months ago
- β110Updated 9 months ago
- Helios: Automated XSS Testingβ128Updated 3 months ago
- Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.β176Updated 7 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSRβ¦β119Updated 2 months ago
- AI-powered ffuf wrapperβ266Updated 3 months ago
- The repository contains useful GitHub dorks for finding open-source vulnerabilities.β58Updated 9 months ago
- Shodan Dorksβ234Updated 2 months ago
- Shodan Dorks 2023β232Updated last year
- β185Updated last year
- CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.β42Updated last week
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and eβ¦β346Updated 11 months ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hiddeβ¦β314Updated 4 months ago
- Local File Inclusion discovery and exploitation toolβ225Updated last month
- β144Updated last month
- SubOwner - A Simple tool check for subdomain takeovers.β100Updated last month
- Simple Python script that will set up a PHP server for stealing cookies - and provided the payload needed.β20Updated last month
- Nucleimonst3r is a powerful vulnerability scanner that can help Bug Bounty Hunters find low hanging fruit vulnerabilities for known CVEs β¦β235Updated 2 months ago
- some of the commands I usually use when doing HTB machinesβ38Updated 10 months ago
- β158Updated 2 weeks ago
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interneβ¦β96Updated last month
- This is the open sourced code for the extension, EndPointerβ46Updated last week
- Simple HTTP listener for security testingβ114Updated last year
- β108Updated 5 months ago
- Postman OSINT tool to extract creds, token, username, email & more from Postman Public Workspacesβ152Updated 5 months ago