A list of useful payloads and Bypass for Web Application Security and Bug Bounty/CTF
☆172Mar 29, 2020Updated 5 years ago
Alternatives and similar repositories for D4rkXSS
Users that are interested in D4rkXSS are comparing it to the libraries listed below
Sorting:
- Signatures for jaeles scanner by @j3ssie☆117Apr 20, 2024Updated last year
- ☆38Nov 27, 2020Updated 5 years ago
- Everything about xss protection technology☆14Oct 22, 2019Updated 6 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆45Feb 10, 2021Updated 5 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆174Nov 11, 2020Updated 5 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆802Jul 4, 2023Updated 2 years ago
- Automation Recon tool which works with Large & Medium scopes. It performs a lot of tasks and gets back all the results in separated files…☆684Jul 15, 2024Updated last year
- ☆18Apr 26, 2021Updated 4 years ago
- You can read the writeup on this script here☆192Sep 30, 2021Updated 4 years ago
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Sep 11, 2021Updated 4 years ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 5 years ago
- WordPress Bruteforce List, Default paths and endpoints☆75May 14, 2022Updated 3 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- Electron JS Browser To Find XSS Vulnerabilities Automatically☆747Mar 30, 2021Updated 4 years ago
- ☆44Aug 5, 2022Updated 3 years ago
- Passively check for XSS character encodings☆18Updated this week
- parse ffuf & map endpoints to wordlists☆21Feb 25, 2021Updated 5 years ago
- Automated Recon Tool Installer☆15Jun 29, 2022Updated 3 years ago
- Random utilities from my security projects that might be useful to others☆183Jan 26, 2025Updated last year
- This repo includes my analysis of some public reports.☆55Sep 22, 2020Updated 5 years ago
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- A Firefox Web Extension to improve the discovery of DOM XSS.☆288Nov 13, 2024Updated last year
- The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down her…☆249Sep 27, 2025Updated 5 months ago
- Tool to get the top android apps for bug bounty purpose☆17Sep 10, 2020Updated 5 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆120Sep 27, 2021Updated 4 years ago
- BugBountyTips☆413Jul 31, 2025Updated 7 months ago
- All in one port scanning script.☆68Jun 24, 2020Updated 5 years ago
- Vulnerability Cheatsheet☆54Apr 22, 2022Updated 3 years ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆106Feb 22, 2021Updated 5 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆297Sep 22, 2024Updated last year
- bash script for Subdomain Enumeration☆399Jul 30, 2025Updated 7 months ago
- Collection of Bug Bounty Tips☆65Dec 10, 2019Updated 6 years ago
- Automating XSS using Bash☆362Jan 27, 2026Updated last month
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215May 13, 2019Updated 6 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,379Mar 11, 2023Updated 2 years ago
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆287Jul 13, 2024Updated last year
- ☆12May 16, 2020Updated 5 years ago
- ☆12Jan 4, 2022Updated 4 years ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,573Jun 6, 2022Updated 3 years ago