0x4ndy / clifLinks
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
☆99Updated 2 years ago
Alternatives and similar repositories for clif
Users that are interested in clif are comparing it to the libraries listed below
Sorting:
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆100Updated 2 years ago
- Signing-key abuse and update exploitation framework☆131Updated 6 months ago
- Quick network scanner library. https://crates.io/crates/qscan☆88Updated 2 years ago
- Fast Web Security Scanner written in Rust based on Lua Scripts☆88Updated 11 months ago
- A simple command line tool which quickly audits the Disallow entries of a site's robots.txt.☆24Updated 2 years ago
- a deterministic finite automata ranker☆72Updated 3 years ago
- NIST-based CVE lookup store and API powered by Rust.☆135Updated 2 months ago
- 🔗 A curated list of awesome Caido related projects☆45Updated 7 months ago
- Fast HTTP Checker.☆214Updated 3 months ago
- Remote Command executor☆81Updated 2 years ago
- Enumerate AWS permissions and resources.☆70Updated 3 years ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Updated 2 years ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆107Updated 3 years ago
- ☆56Updated 3 years ago
- tool for generating wordlists or extending an existing one using mutations.☆389Updated 5 months ago
- ☆33Updated 2 years ago
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆90Updated 3 years ago
- Command-line tool to enumerate top-level domains, check response codes and find potential vulnerabilities for bug bounty hunters and secu…☆26Updated 2 years ago
- List of fresh and validated DNS resolvers updated every 12h.☆24Updated last week
- PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type) allowing cross-task IAM credential theft.☆45Updated 3 months ago
- Target practice for ffuf☆69Updated 4 years ago
- Unicode Security Toolkit☆39Updated last year
- Open a DNS server that knows no records but records every request. Used for DNS exfiltration.☆69Updated 3 years ago
- Handy scripts and one-liners to make life easier☆37Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)☆88Updated 4 years ago
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆68Updated last year
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated last year
- Default locations for files on various Linux distros.☆10Updated 4 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 3 years ago