Alternatives and similar repositories for ShellShockHunter

Users that are interested in ShellShockHunter are comparing it to the libraries listed below

• luisfontes19 / CSRFER
  Tool to generate csrf payloads based on vulnerable requests
  ☆64Updated 4 years ago
• incogbyte / quickpress
  Small tool to automate SSRF wordpress and XMLRPC finder
  ☆81Updated 2 years ago
• six2dez / degoogle_hunter
  Simple fork from degoogle original project with bug hunting purposes
  ☆89Updated 3 years ago
• V1n1v131r4 / webdiscover
  The purpose of this script is to automate the web enumeration process and search for exploits
  ☆114Updated 3 years ago
• j3ssie / sdlookup
  IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io
  ☆129Updated 3 years ago
• HackersZen1 / WebForce
  The Multi-Tool Web application vulnerability scanner.
  ☆52Updated 4 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆45Updated 4 years ago
• shiblisec / Kyubi
  A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidde…
  ☆125Updated last year
• dalbonip / theGreatRecon
  ☆28Updated last year
• moeinfatehi / Admin-Panel_Finder
  A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)
  ☆121Updated 3 years ago
• gnothiseautonlw / burp-shell-fwd-lfi
  A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
  ☆79Updated 4 years ago
• enenumxela / subdomains.sh
  A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.
  ☆79Updated 3 years ago
• xadhrit / xira
  xss vulnerability scanner and input fuzzing tool.
  ☆63Updated 2 years ago
• R0X4R / ssrf-tool
  An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.
  ☆45Updated 4 years ago
• KingOfBugbounty / DockerHunt
  ☆49Updated 3 years ago
• effortlessdevsec / ninjasworkout
  Vulnerable NodeJS Web Application
  ☆96Updated 11 months ago
• carlospolop / Pastos
  ☆56Updated 2 years ago
• A3h1nt / Subcert
  Subcert is a subdomain enumeration tool, that finds all the subdomains from certificate transparency logs.
  ☆80Updated 4 years ago
• storenth / lazyrecon
  Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.
  ☆147Updated 2 years ago
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆157Updated 3 years ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆58Updated 5 years ago
• thegsoinfosec / BurpSuite_payloads
  Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
  ☆82Updated 5 years ago
• obheda12 / MoneyScope
  A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities
  ☆105Updated 4 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆125Updated 4 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆62Updated last year
• Josue87 / resolveDomains
  Given a list of domains, you resolve them and get the IP addresses.
  ☆48Updated 3 years ago
• Alaa-abdulridha / SerpScan
  Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.
  ☆66Updated 4 years ago
• KingOfBugbounty / SecretFinder
  SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files
  ☆35Updated 4 years ago
• emadshanab / VOIP-Pentesting-checklist-Cheatsheet-Tools
  ☆54Updated 4 years ago
• emadshanab / subs_all
  Subdomain Enumeration Wordlist. 8956437 unique words. Updated.
  ☆74Updated 5 years ago