LeakIX / wpfinger
wpfinger is a red-team WordPress scanning tool
☆81Updated last year
Related projects ⓘ
Alternatives and complementary repositories for wpfinger
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- ☆47Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 3 weeks ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆35Updated 2 weeks ago
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆91Updated 3 months ago
- Automated Subdomain Enumeration and Scanning Tool☆110Updated last year
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆75Updated 3 months ago
- ☆64Updated last year
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆106Updated last week
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆42Updated 8 months ago
- Self-hosted passive subdomain continous monitoring tool.☆155Updated 9 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆69Updated 10 months ago
- A really fast http prober.☆39Updated 9 months ago
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆56Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆77Updated last year
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- ☆110Updated 9 months ago
- An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.☆47Updated 2 years ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆89Updated 3 months ago
- this script will help you find favicon hashes which you can use to shodan to get more details about an asset☆26Updated 9 months ago
- ☆69Updated 6 months ago
- A better way of querying certificate transparency logs☆75Updated last year
- Simplify your life with leak detection in JavaScript. NipeJS streamlines the use of regex, making it effortless to uncover potential leak…☆88Updated 3 months ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆65Updated 8 months ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆94Updated last year
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆35Updated 10 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated 2 weeks ago
- WooCommerce Payments: Unauthorized Admin Access Exploit☆39Updated last year
- A Lightning-Fast DNS Resolver written in Rust 🦀☆65Updated this week