๐น Python project to bruteforce Apache Tomcat manager login with known-default credentials
โ99Mar 12, 2024Updated last year
Alternatives and similar repositories for tomcter
Users that are interested in tomcter are comparing it to the libraries listed below
Sorting:
- ๐ Improve your files enumeration with specific extensions!โ17Jan 11, 2022Updated 4 years ago
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and โฆโ365Mar 28, 2025Updated 11 months ago
- ๐ Golang project to exploit an EL Injection vulnerability (CVE-2017-1000486) that affects the Primefaces 5.X versions. This project suppโฆโ18Apr 18, 2023Updated 2 years ago
- ๐ฆ Python project to identify and scan for vulnerabilities related to the Joomla CMS project. It scans for common misconfigurations and pโฆโ172May 2, 2024Updated last year
- ๐ต๏ธ Python project to crawl for JavaScript files and search for secrets like API keys, authorization tokens, hardcoded credentials, etc.โ428May 15, 2025Updated 9 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.โ35Jan 4, 2026Updated 2 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application aโฆโ165Oct 28, 2025Updated 4 months ago
- Python's handling of NaN is....interesting?broken?...this project illustrates the issueโ13Dec 28, 2021Updated 4 years ago
- Fast and customizable vulnerability scanner For JIRA written in Pythonโ344Dec 31, 2024Updated last year
- ๐ญ WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.โ27May 23, 2023Updated 2 years ago
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a pโฆโ30Nov 30, 2025Updated 3 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.โ41Dec 12, 2023Updated 2 years ago
- Red Kite, the Extensible Attack Surface Management tool.โ89Feb 8, 2026Updated 3 weeks ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Geminiโ176Apr 23, 2025Updated 10 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a targetโ47Apr 1, 2023Updated 2 years ago
- Seecurity helper tool to detect entry points of WordPress pluginsโ10May 16, 2024Updated last year
- This script is designed to help expedite a web application assessment by automating some of the assessment steps (e.g., running nmap, subโฆโ87Feb 14, 2026Updated 2 weeks ago
- WRecon, is a tool for the recognition of vulnerabilities and blackbox information for wordpress.โ19Nov 30, 2022Updated 3 years ago
- Modular web-application honeypot platform built using go and ginโ63May 8, 2024Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.โ281Sep 11, 2025Updated 5 months ago
- BSPWM (GruvBox Rice)โ19Jun 9, 2021Updated 4 years ago
- ๐งช Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.โ42Dec 12, 2024Updated last year
- wpscvn is a tool for pentesters, website owner to test if their websites had some vulnerable plugins or themesโ15Oct 20, 2018Updated 7 years ago
- seCureLI is a tool that enables you to experience the delight of building products by helping you get ideas from your head into working sโฆโ28Jul 15, 2024Updated last year
- Repo for all the Recon and enum techniques, Exploitation, Priv-escalation (Linux and Windows), post exploitationโ16Sep 8, 2025Updated 5 months ago
- ๅพฎ่ฝฏ็ญพๅ็ผบ้ทๅฉ็จ๏ผ่ๆๆฏโ18Aug 10, 2021Updated 4 years ago
- All next level week tracksโ10Feb 28, 2021Updated 5 years ago
- CVE-2021-40444 Sampleโ12Sep 10, 2021Updated 4 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.โ48Sep 20, 2024Updated last year
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.โ519Jun 22, 2022Updated 3 years ago
- ngrok Collaborator Link โ yet another Burp Collaborator alternative for free with ngrok.โ113Jan 4, 2024Updated 2 years ago
- Bcheck scripts for Burpโ28Aug 7, 2024Updated last year
- โ20Apr 8, 2023Updated 2 years ago
- GAS ๆผๆดๅฉ็จๆกๆถโ27Mar 25, 2022Updated 3 years ago
- A How-To Guide on using Security Commands and Observing Network Traffic on Wiresharkโ18Jan 27, 2026Updated last month
- โ568Mar 28, 2024Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suiteโ36Mar 4, 2025Updated last year
- A humble, and ๐ณ๐ฎ๐๐, security-oriented HTTP headers analyzer.โ353Updated this week
- A collection of utilities for building extensions using Burp's Montoya APIโ52Nov 8, 2025Updated 3 months ago