Top-Hat-Sec / thsosrtl

Related projects ⓘ

Alternatives and complementary repositories for thsosrtl

• gwen001 / vhost-brute
  A PHP tool to brute force vhost configured on a server.
  ☆84Updated last year
• kacperszurek / burp_wp
  Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.
  ☆178Updated 5 years ago
• infosec-au / fuzzdb
  Automatically exported from code.google.com/p/fuzzdb
  ☆58Updated 2 years ago
• jonluca / Anubis-DB
  Database to store previously found subdomains
  ☆57Updated 2 years ago
• PortSwigger / wordpress-scanner
  Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.
  ☆67Updated 2 years ago
• aress31 / xmlrpc-bruteforcer
  Multi-threaded XMLRPC brute forcer using amplification attacks targeting WordPress installations prior to version 4.4.
  ☆115Updated 6 months ago
• vavkamil / XFFenum
  X-Forwarded-For [403 forbidden] enumeration
  ☆88Updated 6 months ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆98Updated 3 weeks ago
• brianwarehime / inSp3ctor
  AWS S3 Bucket/Object Finder
  ☆115Updated 3 years ago
• 0xdekster / deksterecon
  Web Application recon automation
  ☆123Updated 3 years ago
• audibleblink / passdb-backend
  Password Breach API Server
  ☆78Updated last year
• theMiddleBlue / DNSenum
  Bash script for DNS Enumeration.
  ☆100Updated last year
• ozzi- / tld_scanner
  Scan all possible TLD's for a given domain name
  ☆82Updated 3 years ago
• secdec / xssmap
  Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
  ☆145Updated last year
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated last year
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆206Updated 5 years ago
• capt-meelo / MassMap
  Combined port scanning w/ Masscan's speed & Nmap's scanning features.
  ☆148Updated 2 years ago
• jmaxxz / jwtbrute
  Brute forcing jwt tokens signed with HS256 since 2014
  ☆57Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• devanshbatham / ArchiveFuzz
  Hunt down the secrets from the WebArchives for Fun and Profit
  ☆164Updated last year
• Anon-Exploiter / subdomainsEnumerator
  A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.
  ☆69Updated 3 months ago
• jakejarvis / bounty-domains
  List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)
  ☆70Updated 3 years ago
• roottusk / xforwardy
  Host Header Injection Scanner
  ☆44Updated 4 years ago
• ethicalhack3r / scripts
  Small snippets of code we often find useful
  ☆52Updated 9 years ago
• ghostlulzhacks / waybackMachine
  ☆58Updated 3 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆67Updated 2 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆78Updated 5 years ago
• kavishgr / xmlrpc-bruteforcer
  An XMLRPC brute forcer targeting Wordpress written in Python 3. (DISCONTINUED)
  ☆64Updated 4 years ago
• jakejarvis / subtake
  Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
  ☆146Updated 4 years ago
• GitLab-Red-Team / gitrob
  Reconnaissance tool for GitLab and GitHub organizations
  ☆49Updated 11 months ago