AdnaneKhan / Gato-X
GitHub Attack Toolkit - Extreme Edition
☆196Updated this week
Related projects ⓘ
Alternatives and complementary repositories for Gato-X
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆207Updated 2 months ago
- ☆143Updated last month
- CT Log Scanner☆289Updated last month
- Octoscan is a static vulnerability scanner for GitHub action workflows.☆171Updated last week
- Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbitrary binaries and scripts using any of our eight s…☆255Updated this week
- ☆447Updated 6 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆155Updated last week
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆252Updated 4 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆143Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆390Updated last week
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆117Updated 2 weeks ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆533Updated 11 months ago
- Distribute ordinary bash commands over many systems☆161Updated 2 years ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆138Updated 2 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆141Updated last month
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆228Updated last year
- boostsecurityio/lotp☆101Updated 7 months ago
- ☆146Updated last year
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆225Updated 10 months ago
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆329Updated last year
- ☆147Updated 4 months ago
- ☆292Updated 3 months ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆134Updated 2 weeks ago
- gRPC-Web Pentesting Suite + Burp Suite Extension☆166Updated 4 months ago
- ☆135Updated 6 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆117Updated 2 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆98Updated 9 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆178Updated 2 years ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆166Updated 6 months ago