Th0h0 / autossrf

Related projects: ⓘ

• root-tanishq / userefuzz
  User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
  ☆369Updated last year
• waf-bypass-maker / waf-community-bypasses
  ☆398Updated 2 months ago
• ayadim / Nuclei-bug-hunter
  i will upload more templates here to share with the comunity.
  ☆519Updated 5 months ago
• Net-hunter121 / API-Wordlist
  ☆233Updated 3 years ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆318Updated this week
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆342Updated last year
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆445Updated 2 years ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆324Updated 11 months ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆210Updated last month
• projectdiscovery / fuzzing-templates
  Community curated list of nuclei templates for finding "unknown" security vulnerabilities.
  ☆39Updated 4 months ago
• SAPT01 / HBSQLI
  Automated Tool for Testing Header Based Blind SQL Injection
  ☆261Updated last year
• bnematzadeh / LoggerPlusPlus-API-Filters
  A Collection of Logger++ Filters for Hunting API Vulnerabilities
  ☆188Updated 2 years ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆343Updated 3 weeks ago
• radhasec / xss_payload
  ☆297Updated last year
• MayankPandey01 / Jira-Lens
  Fast and customizable vulnerability scanner For JIRA written in Python
  ☆318Updated 7 months ago
• az7rb / crt.sh
  Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.
  ☆189Updated 2 weeks ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆212Updated 3 weeks ago
• projectdiscovery / nuclei-ai-extension
  Nuclei AI - Browser Extension for Rapid Nuclei Template Generation
  ☆424Updated 10 months ago
• carlospolop / fuzzhttpbypass
  This tool use fuuzzing to try to bypass unknown authentication methods, who knows...
  ☆209Updated last month
• xm1k3 / cent
  Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…
  ☆853Updated 3 months ago
• musana / fuzzuli
  fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.
  ☆717Updated last year
• SeifElsallamy / Blind-XSS-Manager
  Never forget where you inject.
  ☆209Updated last year
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆176Updated 3 months ago
• intrudir / BypassFuzzer
  Fuzz 401/403/404 pages for bypasses
  ☆243Updated last month
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆156Updated 5 months ago
• ferreiraklet / airixss
  Finding XSS during recon
  ☆245Updated 2 years ago
• iamthefrogy / nerdbug
  Full Nuclei automation script with logic explanation.
  ☆230Updated 2 years ago
• pdelteil / BugBountyReportTemplates
  List of reporting templates I have used since I started doing BBH.
  ☆226Updated this week
• lucsemassa / burp_bug_finder
  Automatic Bug finder with buprsuite
  ☆165Updated last year
• daffainfo / all-about-apikey
  Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)
  ☆258Updated 11 months ago