barrracud4 / image-upload-exploits

Related projects ⓘ

Alternatives and complementary repositories for image-upload-exploits

• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆511Updated 2 years ago
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆205Updated 4 months ago
• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆232Updated 2 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• optiv / mobile-nuclei-templates
  ☆393Updated 3 years ago
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆615Updated this week
• Josue87 / gotator
  Gotator is a tool to generate DNS wordlists through permutations.
  ☆457Updated 2 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆215Updated 4 years ago
• sw33tLie / sns
  IIS shortname scanner written in Go
  ☆312Updated last year
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆265Updated 4 months ago
• benso-io / posta
  🐙 Cross-document messaging security research tool powered by https://enso.security
  ☆281Updated last year
• honoki / bbrf-server
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆295Updated this week
• mazen160 / xless
  The Serverless Blind XSS App
  ☆329Updated 7 months ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• BlackFan / content-type-research
  Content-Type Research
  ☆540Updated 9 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆804Updated 2 years ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆358Updated last year
• codingo / DNSCewl
  A DNS Bruteforcing Wordlist Generator
  ☆349Updated last year
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆197Updated 2 years ago
• theinfosecguy / QuickXSS
  Automating XSS using Bash
  ☆350Updated 7 months ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆496Updated 2 years ago
• swoops / eval_villain
  A Firefox Web Extension to improve the discovery of DOM XSS.
  ☆261Updated last week
• trufflesecurity / xsshunter
  ☆358Updated 6 months ago
• Karmaz95 / crimson
  Web Application Security Testing Tools
  ☆234Updated 8 months ago
• hakluke / bug-bounty-standards
  A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…
  ☆227Updated 2 years ago
• dwisiswant0 / gf-secrets
  Secret and/or credential patterns used for gf.
  ☆235Updated last year
• sansatart / scrapts
  Scrapts Scrapts Scrapts
  ☆235Updated 7 months ago
• ameenmaali / wordlistgen
  Quickly generate context-specific wordlists for content discovery from lists of URLs or paths
  ☆217Updated 2 years ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆536Updated 3 months ago
• ameenmaali / urldedupe
  Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
  ☆338Updated 4 years ago