OWASP / joomscan

Related projects ⓘ

Alternatives and complementary repositories for joomscan

• dionach / CMSmap
  CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
  ☆1,040Updated 2 years ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,699Updated 2 years ago
• x90skysn3k / brutespray
  Bruteforcing from various scanner output - Automatically attempts default creds on found services.
  ☆2,043Updated last week
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• rajeshmajumdar / BruteXSS
  BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …
  ☆502Updated 3 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,201Updated 11 months ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,491Updated last year
• SamJoan / droopescan
  A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
  ☆1,288Updated 10 months ago
• epsylon / xsser
  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…
  ☆1,205Updated 2 months ago
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,328Updated 7 months ago
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆891Updated last year
• ztgrace / changeme
  A default credential scanner.
  ☆1,451Updated 2 years ago
• immunIT / drupwn
  Drupal enumeration & exploitation tool
  ☆584Updated 4 years ago
• v3n0m-Scanner / V3n0M-Scanner
  Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
  ☆1,466Updated last year
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,053Updated last year
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆989Updated 2 years ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,347Updated 2 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• digininja / CeWL
  CeWL is a Custom Word List Generator
  ☆1,999Updated 3 weeks ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,911Updated last year
• fwaeytens / dnsenum
  dnsenum is a perl script that enumerates DNS information
  ☆610Updated 5 years ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,540Updated 4 years ago
• 1N3 / Findsploit
  Find exploits in local and online databases instantly
  ☆1,643Updated 3 years ago
• CiscoCXSecurity / bbqsql
  SQL Injection Exploitation Tool
  ☆717Updated 5 years ago
• nettitude / xss_payloads
  Exploitation for XSS
  ☆703Updated 3 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆514Updated 4 years ago
• khalilbijjou / WAFNinja
  WAFNinja is a tool which contains two functions to attack Web Application Firewalls.
  ☆796Updated 6 years ago
• 1N3 / BlackWidow
  A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
  ☆1,528Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago