Charlie-belmer / nosqliLinks
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
☆381Updated 3 years ago
Alternatives and similar repositories for nosqli
Users that are interested in nosqli are comparing it to the libraries listed below
Sorting:
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆480Updated 2 years ago
- Client Side Prototype Pollution Scanner☆518Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆625Updated 7 months ago
- Fetches javascript file from a list of URLS or subdomains.☆776Updated 2 years ago
- Automated learning of regexes for DNS discovery☆370Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆312Updated 7 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆579Updated 10 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆879Updated 3 years ago
- Nuclei templates written by us.☆272Updated 3 years ago
- Default signature for Jaeles Scanner☆322Updated 3 years ago
- HTTP Request Smuggling Detection Tool☆512Updated last year
- ☆681Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆622Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆631Updated last year
- ☆294Updated 2 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆301Updated 2 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆733Updated 3 years ago
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆274Updated 11 months ago
- Content-Type Research☆618Updated last year
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…☆334Updated 4 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆823Updated 2 years ago
- Scrape domain names from SSL certificates of arbitrary hosts☆650Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- ☆540Updated 2 months ago
- A fuzzer for detecting open redirect vulnerabilities☆762Updated 11 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆642Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆623Updated last year
- a javascript change monitoring tool for bugbounties☆650Updated 10 months ago
- A Firefox Web Extension to improve the discovery of DOM XSS.☆272Updated 7 months ago