SamJoan / droopescan
A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
☆1,320Updated last year
Alternatives and similar repositories for droopescan:
Users that are interested in droopescan are comparing it to the libraries listed below
- Drupal enumeration & exploitation tool☆595Updated 4 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,102Updated 5 months ago
- Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)☆587Updated 4 years ago
- CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.☆1,072Updated 3 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,218Updated last year
- A tool for embedding XXE/XML exploits into different filetypes☆1,070Updated 2 months ago
- Various webshells. We accept pull requests for additions to this collection.☆908Updated last year
- The XSS Hunter service - a portable version of XSSHunter.com☆1,511Updated 2 years ago
- A default credential scanner.☆1,471Updated 3 years ago
- Vulnerability scanner based on vulners.com search API☆847Updated 10 months ago
- Setup script for Regon-ng☆925Updated 4 years ago
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆530Updated 2 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,764Updated 2 years ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,384Updated last month
- ☆637Updated 5 months ago
- DotDotPwn - The Directory Traversal Fuzzer☆1,022Updated 2 years ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,266Updated 5 months ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆622Updated 11 months ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆634Updated 6 years ago
- Subdomain Takeover tool written in Go☆1,947Updated last year
- Finds unknown classes of injection vulnerabilities☆652Updated last year
- dnsenum is a perl script that enumerates DNS information☆631Updated 5 years ago
- Exploitation for XSS☆712Updated 3 years ago
- BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …☆521Updated 3 years ago
- A Powerful Subdomain Takeover Tool☆938Updated last year
- kadimus is a tool to check and exploit lfi vulnerability.☆526Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,710Updated 10 months ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,597Updated 3 months ago
- This tool can be used to brute discover GET and POST parameters☆1,361Updated 5 years ago
- A Ruby framework designed to aid in the penetration testing of WordPress systems.☆1,028Updated 5 years ago