0x4ndy / clifLinks
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
☆98Updated 3 years ago
Alternatives and similar repositories for clif
Users that are interested in clif are comparing it to the libraries listed below
Sorting:
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆99Updated 2 years ago
- Signing-key abuse and update exploitation framework☆132Updated 8 months ago
- Quick network scanner library. https://crates.io/crates/qscan☆91Updated 3 years ago
- NIST-based CVE lookup store and API powered by Rust.☆136Updated 4 months ago
- Fast HTTP Checker.☆215Updated 5 months ago
- Fast Web Security Scanner written in Rust based on Lua Scripts☆90Updated last year
- tool for generating wordlists or extending an existing one using mutations.☆389Updated this week
- PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type) allowing cross-task IAM credential theft.☆45Updated 5 months ago
- 🔗 A curated list of awesome Caido related projects☆45Updated 9 months ago
- Remote Command executor☆82Updated 2 years ago
- a deterministic finite automata ranker☆73Updated 3 years ago
- GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrar…☆140Updated 3 months ago
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Updated 2 years ago
- A simple command line tool which quickly audits the Disallow entries of a site's robots.txt.☆23Updated 2 years ago
- A GraphQL enumeration and extraction tool☆134Updated 2 years ago
- Enumerate AWS permissions and resources.☆71Updated 3 years ago
- Unicode Security Toolkit☆40Updated last year
- HTTP Requests for security researchers☆64Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- a multithreaded fast tool to preform active subdomain enumeration☆36Updated 3 years ago
- a smart DNS response-guided subdomain fuzzer☆156Updated 3 years ago
- ☆40Updated this week
- ☆58Updated 3 years ago
- Rust-based password mutator for brute force attacks☆13Updated 9 months ago
- CQ, a code security scanner☆100Updated last year
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆140Updated 2 months ago
- This could have been a bash one-liner but guess what. It's a small Go tool that lists the trending CVEs from cvetrends.com☆107Updated 3 years ago
- ☆116Updated 2 years ago
- Target practice for ffuf☆69Updated 4 years ago
- Blazing fast, advanced Padding Oracle exploit☆261Updated last month