ZephrFish / Wordlists

Related projects: ⓘ

• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆204Updated 4 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆195Updated 3 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆242Updated last year
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 4 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆214Updated 4 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆249Updated 3 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆210Updated 2 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆198Updated last year
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆166Updated 3 years ago
• gwen001 / bb-reports-templates
  ☆187Updated this week
• incogbyte / jsearch
  ☆28Updated 3 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆192Updated 2 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆136Updated 4 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆147Updated last year
• ghostlulzhacks / waybackSqliScanner
  ☆184Updated 5 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆208Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated last year
• root4loot / rescope
  A scope generation tool for Burp Suite & ZAP
  ☆314Updated this week
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆188Updated 4 years ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆141Updated 5 months ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆204Updated 7 years ago
• shiblisec / Rekon
  The project contains multiple shell scripts for automating the tasks during recon.
  ☆171Updated last year
• edduu / Arjun
  HTTP parameter discovery suite.
  ☆94Updated 4 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆115Updated 3 years ago
• gauravnarwani97 / Trishul
  Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…
  ☆233Updated 4 years ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆203Updated 7 years ago
• Cillian-Collins / subscraper
  Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…
  ☆221Updated 4 years ago
• trustedsec / cors-poc
  ☆127Updated 6 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆295Updated last year