blacklanternsecurity / baddns
Check subdomains for subdomain takeovers and other DNS tomfoolery
☆96Updated this week
Related projects: ⓘ
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆87Updated last month
- ☆91Updated this week
- ☆53Updated 10 months ago
- Unicode Security Toolkit☆25Updated this week
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated 10 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆118Updated 5 months ago
- ☆133Updated 4 months ago
- ☆70Updated 2 months ago
- A Burp extension to help pentesters copy requests / responses for reports.☆33Updated 2 months ago
- AI-powered ffuf wrapper☆119Updated 3 weeks ago
- A Slack bot phishing framework for Red Teaming exercises☆150Updated 4 months ago
- A command-line utility for performing reverse DNS lookups☆57Updated last year
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆52Updated 2 weeks ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 6 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆103Updated this week
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆37Updated 3 weeks ago
- A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.☆64Updated 6 months ago
- ☆72Updated last month
- ☆62Updated 4 months ago
- Everything and anything related to password spraying☆122Updated 3 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆112Updated 2 years ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆119Updated last month
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆58Updated 8 months ago
- Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters☆22Updated 9 months ago
- linikatz is a tool to attack AD on UNIX☆134Updated 11 months ago
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆75Updated 9 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆29Updated 5 months ago
- This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used…☆85Updated last week
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆143Updated 9 months ago