SamJoan / droopescan
A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
☆1,285Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for droopescan
- Drupal enumeration & exploitation tool☆583Updated 4 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,075Updated last month
- Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)☆580Updated 3 years ago
- CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.☆1,036Updated 2 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,696Updated 2 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,490Updated last year
- Setup script for Regon-ng☆923Updated 3 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,198Updated 10 months ago
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆516Updated 2 years ago
- Various webshells. We accept pull requests for additions to this collection.☆890Updated last year
- A Powerful Subdomain Takeover Tool☆930Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,328Updated 6 months ago
- ☆634Updated last month
- DotDotPwn - The Directory Traversal Fuzzer☆990Updated 2 years ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,202Updated last month
- A default credential scanner.☆1,444Updated 2 years ago
- Subdomain Takeover tool written in Go☆1,909Updated last year
- A script to enumerate virtual hosts on a server.☆663Updated 6 years ago
- Free web-application vulnerability and version scanner☆560Updated 2 months ago
- A tool to link a domain with registered organisation names and emails, to other domains.☆829Updated 5 months ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆530Updated 2 years ago
- This tool can be used to brute discover GET and POST parameters☆1,341Updated 5 years ago
- Content discovery wordlists generated using BigQuery☆557Updated 4 years ago
- ☆787Updated 11 months ago
- Discover Your Attack Surface!☆1,361Updated last year
- Finds unknown classes of injection vulnerabilities☆636Updated last year
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆796Updated 6 years ago
- dnsenum is a perl script that enumerates DNS information☆608Updated 5 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,036Updated 3 months ago
- Bruteforcing from various scanner output - Automatically attempts default creds on found services.☆2,035Updated this week