awnumar / blind-sql-bitshifting

Related projects: ⓘ

• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆121Updated 7 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆96Updated 2 years ago
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆153Updated last year
• lanmaster53 / sqli-exploiter
  Tool for exploiting SQL injection vulnerabilities that sqlmap can't find.
  ☆95Updated 6 years ago
• lanjelot / albatar
  Albatar is a SQLi exploitation framework in Python
  ☆132Updated 3 years ago
• JacobReynolds / ssrfDetector
  Server-side request forgery detector
  ☆146Updated 7 years ago
• lokifer / BlindElephant
  Getting BlindElephant into a working state, and updating the plugin files
  ☆75Updated 4 years ago
• j0bin / Pentest-Resources
  ☆119Updated 7 years ago
• Ekultek / XanXSS
  A simple XSS finding tool
  ☆108Updated 5 years ago
• devploit / put2win
  Script to automate PUT HTTP method exploitation to get shell
  ☆124Updated 4 years ago
• n3k / Pentest
  Notes/Tools for pentesting
  ☆82Updated 9 months ago
• cameronhotchkies / Absinthe
  A Blind SQL Exploitation application
  ☆79Updated 12 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆252Updated 3 months ago
• lc / hacks
  Repo of useful scripts
  ☆104Updated 4 years ago
• samhaxr / TakeOver-v1
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆101Updated last year
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆130Updated last year
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆58Updated last year
• rebootuser / Hashmash
  Hashmash is a tool to aid in generating hashes from user supplied values and Epochs
  ☆62Updated 8 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆210Updated 2 years ago
• EdOverflow / proof-of-concepts
  A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
  ☆162Updated 4 years ago
• pentesteracademy / vulnoscollection
  Vulnerable OS Collection is a collection of four Ubuntu based OSes containing real world vulnerable web applications.
  ☆57Updated 6 years ago
• pentestmonkey / timing-attack-checker
  Tool to help identify timing attacks
  ☆68Updated 13 years ago
• commixproject / commix-testbed
  A collection of web pages, vulnerable to command injection flaws.
  ☆172Updated last year
• unix-ninja / shellfire
  An exploitation shell focusing on exploiting command injection vulnerabilities, eg., LFI, RFI, SSTI, etc.
  ☆166Updated 7 months ago
• localh0t / m4ngl3m3
  Common password pattern generator using strings list
  ☆129Updated 3 years ago
• gwen001 / actarus
  Actarus is a custom tool for bug bounty
  ☆75Updated 4 years ago
• agrawalsmart7 / autoRecon
  This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.
  ☆77Updated 4 years ago
• JR0ch17 / S3Cruze
  All-in-one AWS S3 bucket tool for pentesters.
  ☆70Updated 5 years ago