0xbharath / assets-from-spf

Related projects: ⓘ

• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆105Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 2 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆82Updated 2 years ago
• lc / jenkinz
  jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.
  ☆65Updated 5 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆84Updated 5 years ago
• MrMax4o4 / Hunting-Tips
  ☆45Updated this week
• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆149Updated 3 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆108Updated 2 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• incogbyte / jsearch
  ☆28Updated 3 years ago
• JesseClarkND / abnormalizer
  unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment
  ☆27Updated 4 years ago
• Healdb / Gather
  URL Screenshot Utility
  ☆27Updated last year
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆47Updated 4 years ago
• l4yton / js-parse
  ☆33Updated this week
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆37Updated 9 months ago
• thelikes / gwdomains
  sub domain wild card filtering tool
  ☆41Updated 4 years ago
• pry0cc / subgen
  A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!
  ☆84Updated 4 years ago
• Rhynorater / reports
  ☆56Updated 2 months ago
• bug-knr / KNR-XSS-Payloads
  ☆53Updated this week
• Damian89 / simple-oob-scanner
  Simple tool to test for SSRF/OOB HTTP Read within the Path of a request
  ☆30Updated 5 years ago
• tdr130 / assetnote
  Push notifications for passive DNS data
  ☆105Updated 8 years ago
• smiegles / extract-relative-url-heapsnapshot
  Extract relative urls from a heap snapshot
  ☆85Updated 3 years ago
• guilhermesilvame / security
  Collection of scripts to test your website against vulnerabilities.
  ☆18Updated 6 months ago
• fellchase / flumberboozle
  Suite of programs meant to aid in bug hunting and security assessments
  ☆75Updated 4 years ago
• JR0ch17 / rdse
  Extracts subdomains from a specified domain using https://recon.dev.
  ☆16Updated 4 years ago
• gwen001 / myrecon.py
  My recon script
  ☆51Updated 4 years ago
• sorokinpf / ApiWordlistGenerator
  Generate wordlists for fuzzing API method names
  ☆53Updated 3 years ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆89Updated last year
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆41Updated last year
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆32Updated 4 years ago