Encryptor-Sec / XSSearch
XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for automating XSS attacks and validating XSS endpoint
☆59Updated 3 years ago
Alternatives and similar repositories for XSSearch:
Users that are interested in XSSearch are comparing it to the libraries listed below
- ☆42Updated 3 years ago
- ☆32Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated 2 years ago
- Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…☆53Updated 3 years ago
- Automated Web Recon Shell Scripts☆51Updated 3 years ago
- I collected it to help the bug hunter get a reward☆58Updated 2 years ago
- ☆78Updated 2 years ago
- XSS Finder Via SSTI☆55Updated last year
- IIS shortname scanner + bruteforce☆52Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Fast Bug Bounty Script☆37Updated 3 months ago
- These Repositories About My Recon Methodology To Give Some Idea For Other Hunter How To Do Recon☆43Updated 2 years ago
- Bug Bounty & Other Stuff☆57Updated 3 years ago
- Authorization-Nuclei-Templates☆39Updated 7 months ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆57Updated 3 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Script that download 37+ open source nuclei templates☆43Updated 2 years ago
- Basic Bash Script to scrape all subdomains from crtsh in a single run☆19Updated 2 years ago
- A list of threat sinks used in the manual security source code review for application security☆70Updated last year
- ☆42Updated 3 years ago
- nuclei-bb-templates☆49Updated 2 years ago
- Check List☆79Updated 2 years ago
- My bug bounty notes☆32Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- A solid recon tool I use personally.☆30Updated last year