attackercan / regexp-security-cheatsheet

Related projects: ⓘ

• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,474Updated last year
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆523Updated 2 years ago
• nettitude / xss_payloads
  Exploitation for XSS
  ☆700Updated 3 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,030Updated 2 months ago
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,018Updated 3 months ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,299Updated 4 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,335Updated last year
• PortSwigger / http-request-smuggler
  ☆950Updated 9 months ago
• nahamsec / JSParser
  ☆785Updated 10 months ago
• PortSwigger / param-miner
  ☆1,203Updated last week
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,892Updated last year
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆722Updated 3 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆500Updated last year
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆973Updated last year
• wisec / domxsswiki
  Automatically exported from code.google.com/p/domxsswiki
  ☆515Updated 6 years ago
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,158Updated 3 weeks ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆919Updated 11 months ago
• nahamsec / lazys3
  ☆522Updated 7 months ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆498Updated 5 months ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆635Updated 5 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆631Updated 5 years ago
• blark / aiodnsbrute
  Python 3.5+ DNS asynchronous brute force utility
  ☆638Updated 10 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆626Updated 11 months ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,188Updated 9 months ago
• jobertabma / relative-url-extractor
  A small tool that extracts relative URLs from a file.
  ☆720Updated 3 years ago
• jobertabma / virtual-host-discovery
  A script to enumerate virtual hosts on a server.
  ☆659Updated 6 years ago
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆512Updated 2 years ago
• ptoomey3 / evilarc
  Create tar/zip archives that can exploit directory traversal vulnerabilities
  ☆968Updated 3 years ago
• jobertabma / ground-control
  A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.
  ☆528Updated 7 years ago
• bl4de / security-tools
  My collection of various security tools created mostly in Python and Bash. For CTFs and Bug Bounty.
  ☆778Updated last week