JavierOlmedo / UltimateCMSWordlistsLinks
📚 An ultimate collection wordlists of the best-known CMS
☆92Updated last year
Alternatives and similar repositories for UltimateCMSWordlists
Users that are interested in UltimateCMSWordlists are comparing it to the libraries listed below
Sorting:
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆61Updated 2 years ago
- Generates target specific word lists for Fuzzing with fuff☆112Updated 5 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 5 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆82Updated 3 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆95Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 5 years ago
- s3 brute force tool☆44Updated 4 years ago
- A combined wordlists for files and directory discovery☆127Updated 4 years ago
- A Payload Injector for bugbounties written in go☆70Updated 5 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆87Updated 5 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆52Updated 4 years ago
- Horizontal Domain Discovery☆77Updated 2 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 5 years ago
- Recon Custom WordList Ganerator☆58Updated 5 years ago
- Find subdomains and takeovers.☆86Updated 3 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆116Updated 3 weeks ago
- Subdomain Enumeration Wordlist. 8956437 unique words. Updated.☆75Updated 5 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 6 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 4 years ago
- Host Header Injection Checker☆83Updated 3 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 5 years ago
- Misc bounty and vulndisc things☆85Updated 5 years ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆99Updated 4 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆93Updated 6 months ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆106Updated 4 years ago
- Small script to check a list of domains against open redirect vulnerability☆28Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆107Updated 5 years ago
- All in one port scanning script.☆68Updated 5 years ago