0x4ndy / clif
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
☆99Updated 2 years ago
Alternatives and similar repositories for clif:
Users that are interested in clif are comparing it to the libraries listed below
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆94Updated 2 years ago
- Fast Web Security Scanner written in Rust based on Lua Scripts☆84Updated 3 months ago
- Signing-key abuse and update exploitation framework☆124Updated 3 weeks ago
- Quick network scanner library. https://crates.io/crates/qscan☆82Updated 2 years ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆106Updated 2 years ago
- a deterministic finite automata ranker☆69Updated 3 years ago
- Fast HTTP Checker.☆214Updated 5 months ago
- Fast, compact and all-around subdomain enumeration tool written in Rust☆22Updated 3 years ago
- NIST-based CVE lookup store and API powered by Rust.☆129Updated 2 months ago
- ☆53Updated 2 years ago
- 🔗 A curated list of awesome Caido related projects☆35Updated last week
- Linux Enumeration / Privilege escalation tool☆23Updated 4 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Rust Weaponization for Red Team Engagements.☆27Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 9 months ago
- Default locations for files on various Linux distros.☆10Updated 3 years ago
- Rust-based high performance domain permutation generator.☆285Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆63Updated 6 months ago
- Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)☆90Updated 3 years ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆63Updated last year
- Open a DNS server that knows no records but records every request. Used for DNS exfiltration.☆68Updated 3 years ago
- Rust in-memory dumper☆107Updated last year
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆85Updated 2 years ago
- ☆61Updated 3 months ago
- Intentionaly very vulnerable API with bonus bad coding practices☆44Updated last year
- Interactive results explorer and annotation tool for Nosey Parker☆27Updated last month
- Do bulk whois lookups and get alerted on domains of interest.☆33Updated 7 months ago
- a multithreaded fast tool to preform active subdomain enumeration☆34Updated 2 years ago
- Target practice for ffuf☆63Updated 3 years ago
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…☆86Updated last year