OWASP / joomscan

Related projects: ⓘ

• dionach / CMSmap
  CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
  ☆1,021Updated 2 years ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,661Updated 2 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,188Updated 9 months ago
• x90skysn3k / brutespray
  Bruteforcing from various scanner output - Automatically attempts default creds on found services.
  ☆1,992Updated this week
• 1N3 / BlackWidow
  A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
  ☆1,502Updated last year
• epsylon / xsser
  Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…
  ☆1,157Updated this week
• v3n0m-Scanner / V3n0M-Scanner
  Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
  ☆1,455Updated 10 months ago
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆973Updated last year
• rajeshmajumdar / BruteXSS
  BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …
  ☆489Updated 3 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,299Updated 4 months ago
• SamJoan / droopescan
  A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
  ☆1,251Updated 8 months ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,657Updated 4 months ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,329Updated 2 years ago
• rastating / wordpress-exploit-framework
  A Ruby framework designed to aid in the penetration testing of WordPress systems.
  ☆1,017Updated 4 years ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,089Updated 4 months ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,021Updated last year
• ztgrace / changeme
  A default credential scanner.
  ☆1,429Updated 2 years ago
• s0md3v / Bolt
  CSRF Scanner
  ☆538Updated 2 months ago
• Tuhinshubhra / CMSeeK
  CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
  ☆2,293Updated 5 months ago
• BlackArch / webshells
  Various webshells. We accept pull requests for additions to this collection.
  ☆878Updated 11 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,892Updated last year
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,472Updated last year
• fwaeytens / dnsenum
  dnsenum is a perl script that enumerates DNS information
  ☆592Updated 4 years ago
• digininja / CeWL
  CeWL is a Custom Word List Generator
  ☆1,902Updated 3 weeks ago
• 1N3 / PrivEsc
  A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
  ☆955Updated 6 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆511Updated 4 years ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆2,937Updated 3 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,508Updated 4 years ago
• Ekultek / Zeus-Scanner
  Advanced reconnaissance utility
  ☆952Updated 9 months ago
• 1N3 / Findsploit
  Find exploits in local and online databases instantly
  ☆1,611Updated 2 years ago