0xInfection / vulninfra
For finding secrets, tokens and other common mistakes made by developers.
☆12Updated last month
Related projects ⓘ
Alternatives and complementary repositories for vulninfra
- This is a lazy enumeration script made to make bug bounty enum & pentest flyovers easy as cake!☆14Updated 4 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Burp Suite extension for extracting metadata from files☆19Updated 3 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Python support package to parse IP and host inputs from network based tooling☆10Updated last year
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago
- A tool that scans a list of given domains, and returns the status codes for each domain on both port 80 & 443☆18Updated 3 years ago
- InfiniteWP Client < 1.9.4.5 - Authentication Bypass☆19Updated 3 years ago
- Python driver for Wappalyzer, a web application detection utility.☆10Updated 4 years ago
- Extract endpoints from specific Git repository for fuzzing☆21Updated 4 years ago
- A Mozilla Firefox extension which allows quick access to your google-dorking result☆19Updated 4 years ago
- Simple tools to handle string and generate subdomain permutations☆14Updated 2 years ago
- Docker image for reconftw, a simple script intended to perform a full recon on an objective with multiple subdomains☆10Updated 3 years ago
- Standardizing Security Titles☆13Updated last year
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Updated 7 months ago
- Remove Offensive and Profane Words from Wordlists☆14Updated last year
- Post-Exploitation module for Penetration Tester and Hackers.☆27Updated 2 years ago
- Web application recon for bug bounty☆21Updated 4 years ago
- Scripts for: How to Build a Covert Pentesting Infrastructure Almost Free☆21Updated 5 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 3 years ago
- CVE-2020-5902☆9Updated 4 years ago
- Fast dns resolver☆12Updated 6 months ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆15Updated 3 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 3 years ago
- Command List for Hashcat and default keyspaces.☆14Updated 4 years ago