allyomalley / s3TakeoverLinks
Automate the process of an S3 bucket subdomain takeover via dangling CNAME record
☆26Updated last year
Alternatives and similar repositories for s3Takeover
Users that are interested in s3Takeover are comparing it to the libraries listed below
Sorting:
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Converts a hostname (or URI) to IP address using your local resolver☆25Updated last year
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆59Updated 3 years ago
- Framework to automate Bug Bounty Reconnaissance☆44Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- ☆62Updated 4 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆45Updated 4 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated last year
- A tool for testing subdomain takeover possibilities at a mass scale.☆49Updated 4 years ago
- Returns results from Google search.☆50Updated 2 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Updated 3 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆58Updated 2 years ago
- ☆33Updated 4 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆61Updated last year
- ☆24Updated 4 years ago
- Dump all available paths and/or endpoints on WADL file.☆94Updated 3 weeks ago
- ☆38Updated 4 years ago
- a tool that compiles a csv of all h1 program stats☆47Updated 2 years ago
- Nuclei Templates Directory☆52Updated 3 weeks ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆68Updated 2 years ago
- This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to…☆47Updated 2 years ago
- ☆27Updated 5 years ago
- A collection of scripts for bug-bounty related stuff☆39Updated 4 years ago
- XSS reflector vulnerabilities exploitation extended.☆27Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- Detects request smuggling via HTTP/2 downgrades.☆94Updated 3 years ago
- Alternative to XSS Hunter for blind XSS.☆51Updated 2 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Collection of tools to interact with Intigriti website☆16Updated last year
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆43Updated last week