0x4ndy / clif
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
☆99Updated 2 years ago
Alternatives and similar repositories for clif:
Users that are interested in clif are comparing it to the libraries listed below
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆97Updated 2 years ago
- Fast Web Security Scanner written in Rust based on Lua Scripts☆84Updated 4 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Quick network scanner library. https://crates.io/crates/qscan☆84Updated 2 years ago
- 🔰 Caido Plugin StarterKit☆31Updated 4 months ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆63Updated last year
- Signing-key abuse and update exploitation framework☆125Updated 2 weeks ago
- ☆55Updated 2 years ago
- a multithreaded fast tool to preform active subdomain enumeration☆34Updated 2 years ago
- 🔗 A curated list of awesome Caido related projects☆35Updated 3 weeks ago
- Default locations for files on various Linux distros.☆10Updated 3 years ago
- a deterministic finite automata ranker☆70Updated 3 years ago
- Handy scripts and one-liners to make life easier☆37Updated 2 years ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆41Updated 5 months ago
- Unicode Security Toolkit☆34Updated 6 months ago
- Nuclei plugins to audit Chrome extensions☆64Updated 9 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 10 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆63Updated 7 months ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆106Updated 2 years ago
- Enumerate AWS permissions and resources.☆68Updated 2 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated last year
- ☆68Updated last year
- Fast, compact and all-around subdomain enumeration tool written in Rust☆23Updated 3 years ago
- EvenBetterExtensions allows you to quicky install and keep updated Caido extensions.☆23Updated 6 months ago
- ☆62Updated 4 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated 7 months ago
- A simple command line tool which quickly audits the Disallow entries of a site's robots.txt.☆24Updated 2 years ago
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆61Updated 2 years ago
- Fast HTTP Checker.☆214Updated this week