GManOfficial / IDOR-INLinks
The IDOR IN works by systematically scanning a target web application and examining various endpoints, parameters, and data access points to identify potential IDOR vulnerabilities. It leverages techniques such as parameter fuzzing, payload injection, and response analysis to detect signs of insecure direct object references.
☆19Updated 2 years ago
Alternatives and similar repositories for IDOR-IN
Users that are interested in IDOR-IN are comparing it to the libraries listed below
Sorting:
- ☆25Updated last year
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Updated 7 months ago
- bash script for automating subdomain enumeration process either passive or active☆27Updated 6 months ago
- An interactive bash script for detecting IDOR vulnerabilities. Automates the discovery of access control issues in web applications, enha…☆9Updated 2 months ago
- Xss payload for bypassing waf☆16Updated 5 years ago
- This tool will resolve a list of Domains, IPs, Hosts, URLs and save the results for valid/invalid fast!☆17Updated 2 years ago
- An automated reconnaissance and vulnerability scanning tool that combines multiple tools for comprehensive web application security asses…☆19Updated 2 weeks ago
- NetFuzzer is a comprehensive network security assessment tool for internal and external network components, including Host Machines, Fire…☆15Updated 5 months ago
- A 1 Liner SQL Injection Attack using SQLMAP and various parameters that helps quickly check for a vulnerabilities during Bug Bounty☆41Updated 9 months ago
- Pointer is a Fast Simple Lightweight Tool for Endpoint Discovery.☆14Updated last year
- Python script implementing the favicon hash trick to find subdomains.☆36Updated 2 years ago
- https://www.nu11secur1ty.com☆23Updated last month
- Filter URLs to save your time.☆60Updated 2 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆42Updated last year
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆23Updated last year
- A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticat…☆8Updated last year
- Chrome extension tool for OSINT & Recon☆53Updated last year
- subfalcon is a subdomain enumeration tool that allows you to discover and monitor subdomains for a given list of domains or a single doma…☆48Updated 6 months ago
- Passive Web Vulnerability Detection Tool☆34Updated last month
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated 7 months ago
- SWS-Recon is a Python Tool designed to performed Reconnaissance on the given target website- Domain or SubDomain. SWS-Recon collects info…☆22Updated 2 years ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 7 months ago
- A bash script that automates the process of service discovery on specified target hosts. The aim of the scripts is reducing scan time, in…☆13Updated last month
- Cross Site Scripting ( XSS ) Vulnerability Payload List☆22Updated 4 years ago
- Enumerate old versions of robots.txt paths using Wayback Machine for content discovery☆50Updated last year
- ☆37Updated 3 months ago
- Find secrets and passwords in container images and file systems☆14Updated 2 years ago
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆44Updated last year
- Useful Github Dorks for BugBounty -☆65Updated 2 years ago
- Certina is an OSINT tool for red teamers and bug hunters to discover subdomains from web certificate data☆53Updated last year