The IDOR IN works by systematically scanning a target web application and examining various endpoints, parameters, and data access points to identify potential IDOR vulnerabilities. It leverages techniques such as parameter fuzzing, payload injection, and response analysis to detect signs of insecure direct object references.
☆25Jun 25, 2023Updated 2 years ago
Alternatives and similar repositories for IDOR-IN
Users that are interested in IDOR-IN are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An interactive bash script for detecting IDOR vulnerabilities. Automates the discovery of access control issues in web applications, enha…☆15Apr 10, 2025Updated last year
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆64Jan 18, 2021Updated 5 years ago
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- Describe how to use ffuf different options with examples☆14Jun 13, 2022Updated 3 years ago
- AI-based Web Application Penetration Testing Tool☆25Jan 19, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆19Aug 26, 2020Updated 5 years ago
- A list of ChatGPT Prompts for Web Application Security, Bug Bounty, and Pentesting☆41May 18, 2023Updated 2 years ago
- The DNS Security Analysis Tool is a Python-based utility designed to conduct an in-depth security analysis of DNS configurations for mult…☆19Oct 18, 2024Updated last year
- 🔒 Private Internet Access VPN Configurations & CLI for NixOS☆12Feb 27, 2026Updated 2 months ago
- Automatic Mass Tool for check and exploiting vulnerability in CVE-2023-3076 - MStore API < 3.9.9 - Unauthenticated Privilege Escalation (…☆16Sep 20, 2023Updated 2 years ago
- Laravel PHP framework black-box vulnerability scanner☆40Sep 3, 2024Updated last year
- A Complete SSRF (Server Side Request Forgery) Scanner.☆40Dec 1, 2025Updated 5 months ago
- It's an AI Agent that analyzes PDFs (provided locally or via the web) using SenecaLLMs fine-tuned for cybersecurity. It identifies sensit…☆19Feb 12, 2025Updated last year
- Official API Documentation☆33Jun 29, 2025Updated 10 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Collected resources for OSWA preparation.☆26Jan 25, 2023Updated 3 years ago
- A tool to exploit the hash length extension attack in various hashing algorithms☆17Sep 11, 2012Updated 13 years ago
- ResetRyder - Open Source Brute Force Password Reset Tool☆18Mar 10, 2025Updated last year
- Code, exploits, and tips for pentesting osTicket☆13Feb 28, 2025Updated last year
- Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Si…☆79Jan 13, 2026Updated 3 months ago
- Sqli-Scanner is a python3 script written to scan websites for SQL injection vulnerabilities Features 1 Scan one website 2 Scan multiple…☆22Nov 6, 2021Updated 4 years ago
- a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.☆18Jan 22, 2025Updated last year
- Easily take advantage of multi-core systems for Featherjs.☆16Feb 16, 2014Updated 12 years ago
- Query builder for mongo_dart and objectory☆11Jan 26, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Bug Hunting Handbook☆11Aug 11, 2022Updated 3 years ago
- Bybit API client library for Go (ByBit API connector)☆10Dec 19, 2025Updated 4 months ago
- ☆15May 22, 2023Updated 2 years ago
- multiple python implementations for image dithering☆18Apr 12, 2024Updated 2 years ago
- webpwn3r ======== WebPwn3r - Web Applications Security Scanner. By Ebrahim Hegazy - @Zigoo0 Thanks: @lnxg33k, @dia2diab @Aelhemily, @o…☆28Jan 11, 2019Updated 7 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆69Jul 12, 2021Updated 4 years ago
- Scripts for bug bounty-ing and attack surface mapping☆13Jan 10, 2022Updated 4 years ago
- Detect SSRF within Caido☆50Apr 17, 2026Updated 2 weeks ago
- Reddit is tracking every out-going link you click. Even if you are not logged in, every news article, image, or website you visit from R…☆13Aug 6, 2016Updated 9 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer ��• AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- CLI to build Rust apps for Ledger devices☆19Apr 29, 2026Updated last week
- TLS protocol scanner☆15Sep 27, 2022Updated 3 years ago
- Argument injection vulnerability in PHP☆13Jun 15, 2024Updated last year
- osint tool user github | ghubscan 1.4☆13Mar 5, 2026Updated 2 months ago
- Checks for signature requirements over LDAP☆98Oct 11, 2022Updated 3 years ago
- A command line tool to brute-force websites using cookies crafted with flask-unsign.☆13Apr 6, 2023Updated 3 years ago
- Pentesting Apache Tomcat 101☆14Apr 4, 2023Updated 3 years ago