Cillian-Collins / dirscraper
OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.
☆224Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for dirscraper
- A tool to hunt for publicly accessible DigitalOcean Spaces☆154Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated last month
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆151Updated last year
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆465Updated 5 years ago
- My Recon Automation☆194Updated 3 years ago
- Some tools to automate recon - 003random☆295Updated 6 years ago
- ☆273Updated 3 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆302Updated 6 years ago
- A place to store my own wordlists, and link to others that are useful☆105Updated last year
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆266Updated 3 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆131Updated last year
- Collect information about email addresses from Pastebin☆35Updated 3 years ago
- Toolset for detecting reflected xss in websites☆109Updated 6 years ago
- Burp Suite extension to discover assets from HTTP response.☆219Updated 3 years ago
- Automated blind-xss search for Burp Suite☆277Updated 5 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆394Updated 4 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆137Updated 5 years ago
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆242Updated 5 years ago
- This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.☆78Updated 5 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Updated last year
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆205Updated 4 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆166Updated 5 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆280Updated 4 months ago
- XSS Hunter Burp Plugin☆148Updated 6 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆162Updated 5 years ago
- Various Payload wordlists☆235Updated 4 years ago
- Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…☆154Updated 6 months ago