RedTeamPentesting / monsoon
Fast HTTP enumerator
☆481Updated 3 weeks ago
Alternatives and similar repositories for monsoon
Users that are interested in monsoon are comparing it to the libraries listed below
Sorting:
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.☆386Updated 3 weeks ago
- DNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplie…☆281Updated 4 years ago
- A golang utility to spider through a website searching for additional links.☆339Updated 4 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆520Updated 3 weeks ago
- A tool to test security of json web token☆274Updated 4 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆504Updated 2 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filtering…☆1,424Updated this week
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆399Updated 5 months ago
- Scrape domain names from SSL certificates of arbitrary hosts☆646Updated last year
- Utility program to perform multiple operations for a given subnet/CIDR ranges.☆1,089Updated this week
- An automated tool which can simultaneously crawl, fill forms, trigger error/debug pages and "loot" secrets out of the client-facing code …☆402Updated 3 months ago
- Go client to communicate with Chaos DB API.☆715Updated this week
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆420Updated 6 months ago
- Private key usage verification☆431Updated last month
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆266Updated 2 years ago
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆472Updated 2 years ago
- Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Mu…☆222Updated 4 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆289Updated 2 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- Fast HTTP Checker.☆214Updated 3 weeks ago
- A CLI-based HTTP intercept and replay proxy☆256Updated last month
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆965Updated this week
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆379Updated 3 years ago
- Fast and configurable TLS grabber focused on TLS based data collection.☆966Updated this week
- Http request smuggling vulnerability scanner☆227Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆616Updated 2 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆477Updated 2 years ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆867Updated last year
- Awesome cloud enumerator☆1,006Updated 2 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.☆925Updated this week