The IDOR IN works by systematically scanning a target web application and examining various endpoints, parameters, and data access points to identify potential IDOR vulnerabilities. It leverages techniques such as parameter fuzzing, payload injection, and response analysis to detect signs of insecure direct object references.
☆26Jun 25, 2023Updated 2 years ago
Alternatives and similar repositories for IDOR-IN
Users that are interested in IDOR-IN are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- An interactive bash script for detecting IDOR vulnerabilities. Automates the discovery of access control issues in web applications, enha…☆14Apr 10, 2025Updated last year
- Methodoloy for pentesting web applications.☆10Aug 18, 2022Updated 3 years ago
- Describe how to use ffuf different options with examples☆14Jun 13, 2022Updated 4 years ago
- Turn your ESP32 into a Bluetooth Rubber Ducky - It allows your ESP32 board to function as a wireless input device☆35Nov 26, 2025Updated 6 months ago
- AI-based Web Application Penetration Testing Tool☆25Jan 19, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ☆19Aug 26, 2020Updated 5 years ago
- A list of ChatGPT Prompts for Web Application Security, Bug Bounty, and Pentesting☆41May 18, 2023Updated 3 years ago
- The DNS Security Analysis Tool is a Python-based utility designed to conduct an in-depth security analysis of DNS configurations for mult…☆19Oct 18, 2024Updated last year
- ☆10Jul 3, 2021Updated 4 years ago
- 🔒 Private Internet Access VPN Configurations & CLI for NixOS☆13Feb 27, 2026Updated 3 months ago
- A simple index for HackTheBox machine along with tags☆16Mar 26, 2026Updated 2 months ago
- A python based tool for finding SQL vulnerable sites.☆14May 22, 2023Updated 3 years ago
- Automatic Mass Tool for check and exploiting vulnerability in CVE-2023-3076 - MStore API < 3.9.9 - Unauthenticated Privilege Escalation (…☆16Sep 20, 2023Updated 2 years ago
- A Complete SSRF (Server Side Request Forgery) Scanner.☆41Dec 1, 2025Updated 6 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- It's an AI Agent that analyzes PDFs (provided locally or via the web) using SenecaLLMs fine-tuned for cybersecurity. It identifies sensit…☆21Feb 12, 2025Updated last year
- Official API Documentation☆33Jun 29, 2025Updated 11 months ago
- Collected resources for OSWA preparation.☆27Jan 25, 2023Updated 3 years ago
- A tool to exploit the hash length extension attack in various hashing algorithms☆18Sep 11, 2012Updated 13 years ago
- Code, exploits, and tips for pentesting osTicket☆13Feb 28, 2025Updated last year
- A tool to exploit the hash length extension attack in various hashing algorithms☆10Apr 14, 2014Updated 12 years ago
- Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Si…☆78Jan 13, 2026Updated 5 months ago
- Sqli-Scanner is a python3 script written to scan websites for SQL injection vulnerabilities Features 1 Scan one website 2 Scan multiple…☆22Nov 6, 2021Updated 4 years ago
- a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.☆18Jun 7, 2026Updated last week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Easily take advantage of multi-core systems for Featherjs.☆16Feb 16, 2014Updated 12 years ago
- Query builder for mongo_dart and objectory☆11Jan 26, 2026Updated 4 months ago
- This is a simple web application vulnerability scanner that checks if a given URL or IP address is vulnerable to 36 common web applicatio…☆26Dec 7, 2025Updated 6 months ago
- Get newest public disclosed HackerOne report notifications on your Desktop☆15Jan 29, 2020Updated 6 years ago
- Bug Hunting Handbook☆11Aug 11, 2022Updated 3 years ago
- The chinese version dartlang guide for you, include style doc usage and design☆10Aug 20, 2020Updated 5 years ago
- multiple python implementations for image dithering☆18Apr 12, 2024Updated 2 years ago
- webpwn3r ======== WebPwn3r - Web Applications Security Scanner. By Ebrahim Hegazy - @Zigoo0 Thanks: @lnxg33k, @dia2diab @Aelhemily, @o…☆28Jan 11, 2019Updated 7 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆69Jul 12, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Scripts for bug bounty-ing and attack surface mapping☆13Jan 10, 2022Updated 4 years ago
- A (fork of a) slick visualization for your source code☆59Feb 3, 2010Updated 16 years ago
- Detect SSRF within Caido☆50Apr 17, 2026Updated last month
- Dart Postgresql database library.☆15May 14, 2026Updated last month
- A curated list of resources, tools, and wordlists for bug bounty hunters.☆19Feb 26, 2026Updated 3 months ago
- <img src=x onerroralert(1);>☆11Jul 12, 2014Updated 11 years ago
- Argument injection vulnerability in PHP☆13Jun 15, 2024Updated 2 years ago