0xInfection / XSRFProbe

Related projects ⓘ

Alternatives and complementary repositories for XSRFProbe

• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,339Updated last year
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,812Updated 10 months ago
• devanshbatham / FavFreak
  Making Favicon.ico based Recon Great again !
  ☆1,121Updated last year
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆787Updated last year
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,209Updated last month
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,676Updated 6 months ago
• nahamsec / bbht
  A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
  ☆1,165Updated 4 months ago
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆694Updated last year
• jdonsec / AllThingsSSRF
  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
  ☆1,221Updated 3 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆930Updated last year
• PentestPad / subzy
  Subdomain takeover vulnerability checker
  ☆1,052Updated last month
• tomnomnom / meg
  Fetch many paths for many hosts - without killing the hosts
  ☆1,600Updated 9 months ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,920Updated 3 years ago
• codingo / Interlace
  Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
  ☆1,209Updated 6 months ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,343Updated 2 years ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆752Updated last year
• yassineaboukir / sublert
  Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
  ☆989Updated 3 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆895Updated last year
• AlephNullSK / dnsgen
  Generates combination of domain names from the provided input.
  ☆900Updated 4 months ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆756Updated last year
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆767Updated 2 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,198Updated 10 months ago
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,714Updated 7 months ago
• m8sec / subscraper
  Subdomain and target enumeration tool built for offensive security testing
  ☆819Updated 4 months ago
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,131Updated 3 years ago
• s0md3v / Bolt
  CSRF Scanner
  ☆547Updated 4 months ago
• yeswehack / PwnFox
  PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.
  ☆1,055Updated 3 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆738Updated last year
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆557Updated 4 years ago