Small script to check a list of domains against open redirect vulnerability
☆29Jan 22, 2022Updated 4 years ago
Alternatives and similar repositories for dom-red
Users that are interested in dom-red are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆16May 3, 2021Updated 4 years ago
- Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.☆39Jan 20, 2023Updated 3 years ago
- Finds Directory Listings or open S3 buckets from a list of URLs☆52Dec 1, 2021Updated 4 years ago
- SpiderFoot automates OSINT collection so that you can focus on analysis.☆11Apr 20, 2023Updated 2 years ago
- take a list of resolved subdomains and output any corresponding CNAMES en masse.☆18Jan 29, 2026Updated last month
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- A simple python script which can check HTTP status of branch of URLs/Subdomains and grab URLs/Subdomain title☆12Oct 16, 2019Updated 6 years ago
- ☆32Apr 6, 2021Updated 4 years ago
- A Tool to Extract Open Kibana Instances on Internet and Map them to their Corresponding Organizations for Bug Bounty.☆16Sep 7, 2019Updated 6 years ago
- This tests a list of s3 buckets to see if they have dir listings enabled or if they are uploadable☆55Dec 10, 2025Updated 3 months ago
- Extract parameters/paths from urls☆17Aug 2, 2020Updated 5 years ago
- Dump elasticsearch instance☆15Jan 7, 2026Updated 2 months ago
- misc scripts/utils that I've written that aren't deserving of own repos.☆14Aug 18, 2021Updated 4 years ago
- ☆27Mar 5, 2023Updated 3 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆48Jan 11, 2023Updated 3 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Fuzzing for LFI using Burpsuite☆67Oct 4, 2016Updated 9 years ago
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆38May 17, 2025Updated 10 months ago
- My Tools For Bug Bounty☆69Sep 23, 2024Updated last year
- GraphQL automatic fuzzing tool☆16Jul 16, 2021Updated 4 years ago
- RAS(RAndom Subdomain) Fuzzer☆42Jan 22, 2020Updated 6 years ago
- S3 bucket finder from html,js and bucket misconfiguration testing tool☆34Feb 10, 2020Updated 6 years ago
- A tool to bulk extract data from ServiceNow.☆11Jul 2, 2021Updated 4 years ago
- CRLF and open redirect fuzzer☆112Aug 31, 2021Updated 4 years ago
- All about subdomain enumeration☆16Feb 5, 2019Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆87May 6, 2023Updated 2 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆76Jun 3, 2025Updated 9 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆174Nov 11, 2020Updated 5 years ago
- ☆10Jan 25, 2023Updated 3 years ago
- <img src=x onerroralert(1);>☆11Jul 12, 2014Updated 11 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Apr 7, 2023Updated 2 years ago
- ☆15Apr 26, 2014Updated 11 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Apr 17, 2020Updated 5 years ago
- 网上收集的一些利用工具☆18May 23, 2023Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆56Feb 2, 2025Updated last year
- A scoreboard for swimming using results from a CTS Dolphin timing system☆20Mar 20, 2026Updated last week
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆118Dec 23, 2025Updated 3 months ago
- Test domain expiration dates.☆12Dec 2, 2022Updated 3 years ago
- Maintaining account persistence via XSS and Oauth☆77Jan 7, 2019Updated 7 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Dec 11, 2020Updated 5 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago