0xbharath / domains-from-csp
A script to extract domain names from Content Security Policy(CSP) headers
☆105Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for domains-from-csp
- A Python script to parse net blocks & domain names from SPF record☆82Updated 4 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- Resolve and quickly portscan a list of (sub)domains.☆85Updated 8 years ago
- Push notifications for passive DNS data☆107Updated 8 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 2 years ago
- Toolset for detecting reflected xss in websites☆109Updated 6 years ago
- A tool to find sensitive keys and passwords in Travis logs☆142Updated 3 years ago
- ☆28Updated 3 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆86Updated 5 years ago
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆66Updated 5 years ago
- Some of my bug bounty tools☆47Updated 5 years ago
- ☆38Updated 5 years ago
- HTTP parameter discovery suite.☆94Updated 4 years ago
- Bug Bounty Dork☆68Updated 2 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- A collection of scripts to extend Burp Suite☆139Updated 5 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆131Updated last year
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆84Updated 4 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 5 years ago
- Extract relative urls from a heap snapshot☆85Updated 3 years ago
- ☆35Updated 6 years ago
- Horizontal Domain Discovery☆75Updated last year
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆105Updated 2 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆151Updated last year
- unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment☆27Updated 4 years ago
- Simple "postMessage logger" Chrome extension☆92Updated 4 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆76Updated 4 years ago
- Fetch known urls from AlienVault's Open Threat Exchange for given hosts☆60Updated 5 years ago