0xSobky / HackVault

Related projects ⓘ

Alternatives and complementary repositories for HackVault

• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,681Updated 3 years ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆2,988Updated 3 weeks ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,489Updated last year
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,328Updated 6 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,784Updated 6 months ago
• michenriksen / aquatone
  A Tool for Domain Flyovers
  ☆5,639Updated 2 years ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,043Updated last year
• s0md3v / AwesomeXSS
  Awesome XSS stuff
  ☆4,778Updated last week
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,696Updated 2 years ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆2,986Updated 4 months ago
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆4,979Updated 2 weeks ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆3,717Updated 6 months ago
• bugcrowd / HUNT
  ☆2,180Updated 11 months ago
• techgaun / github-dorks
  Find leaked secrets via github search
  ☆2,815Updated 10 months ago
• guelfoweb / knock
  Knock Subdomain Scan
  ☆3,876Updated 3 months ago
• codingo / Reconnoitre
  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…
  ☆2,107Updated last year
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,343Updated 3 weeks ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆4,856Updated 3 weeks ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆923Updated 3 years ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,920Updated 3 years ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,676Updated 6 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,909Updated last year
• codingo / NoSQLMap
  Automated NoSQL database enumeration and web application exploitation tool.
  ☆2,912Updated 3 months ago
• epsylon / xsser
  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…
  ☆1,202Updated last month
• jhaddix / tbhm
  The Bug Hunters Methodology
  ☆3,927Updated last year
• cure53 / XSSChallengeWiki
  Welcome to the XSS Challenge Wiki!
  ☆1,576Updated 4 years ago
• danielmiessler / RobotsDisallowed
  A curated list of the most common and most interesting robots.txt disallowed directories.
  ☆1,427Updated 2 years ago
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,635Updated this week
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,895Updated last week
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆4,591Updated this week