0x4ndy / clifLinks
clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerability CVE-2021-3156 and the fact that for some reasons, Google's afl-fuzz doesn't allow for unlimited argument or option specification.
☆98Updated 2 years ago
Alternatives and similar repositories for clif
Users that are interested in clif are comparing it to the libraries listed below
Sorting:
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.☆99Updated 2 years ago
- Signing-key abuse and update exploitation framework☆130Updated 3 months ago
- NIST-based CVE lookup store and API powered by Rust.☆132Updated last month
- Quick network scanner library. https://crates.io/crates/qscan☆86Updated 2 years ago
- A simple command line tool which quickly audits the Disallow entries of a site's robots.txt.☆24Updated 2 years ago
- Fast HTTP Checker.☆214Updated 3 weeks ago
- tool for generating wordlists or extending an existing one using mutations.☆387Updated 2 months ago
- a deterministic finite automata ranker☆71Updated 3 years ago
- Fast Web Security Scanner written in Rust based on Lua Scripts☆87Updated 8 months ago
- HTTP Requests for security researchers☆64Updated 2 years ago
- Open a DNS server that knows no records but records every request. Used for DNS exfiltration.☆68Updated 3 years ago
- 🔗 A curated list of awesome Caido related projects☆43Updated 5 months ago
- Fast, compact and all-around subdomain enumeration tool written in Rust☆23Updated 3 years ago
- a multithreaded fast tool to preform active subdomain enumeration☆33Updated 2 years ago
- CQ, a code security scanner☆100Updated last year
- PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type) allowing cross-task IAM credential theft.☆38Updated last week
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆63Updated last year
- Unicode Security Toolkit☆37Updated 10 months ago
- Remote Command executor☆77Updated 2 years ago
- GTFOArgs is a curated list of programs and their associated arguments that can be exploited to gain privileged access or execute arbitrar…☆131Updated 10 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated last year
- Command-line tool to enumerate top-level domains, check response codes and find potential vulnerabilities for bug bounty hunters and secu…☆26Updated 2 years ago
- Default locations for files on various Linux distros.☆10Updated 4 years ago
- ☆56Updated 2 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated 11 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Automated attack surface mapper and vulnerability scanner (Work In Progress 🚧)☆88Updated 3 years ago
- ☆116Updated 2 years ago
- a smart DNS response-guided subdomain fuzzer☆153Updated 2 years ago
- A structure-aware HTTP fuzzing library☆214Updated 8 months ago