caioluders / LostAndFound
☆25Updated 3 weeks ago
Alternatives and similar repositories for LostAndFound:
Users that are interested in LostAndFound are comparing it to the libraries listed below
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆13Updated 2 years ago
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆54Updated 2 years ago
- pugrecon is a bash script for automatic recon of common vulnerabilities, misconfigurations and files on domains.☆23Updated 4 years ago
- burp extension for brazilian stuff☆27Updated last year
- A better way of querying certificate transparency logs☆84Updated 3 months ago
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆63Updated 2 years ago
- Burp Extension to identify PII data☆21Updated 4 years ago
- Create subdomains and files wordlists from your browser history☆12Updated 2 years ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆49Updated 2 months ago
- This tool is an efficient scanner designed to detect Cache Deception vulnerabilities in web servers. It automates the process of testing …☆23Updated this week
- Collaborative repository to catalogue insecure functions in various programming languages.☆10Updated 2 years ago
- ASNPepper - Recon in ASN - Extracting CIDR's - Fast and efficient scanning☆18Updated 5 months ago
- Identify virtual hosts by similarity comparison☆118Updated 7 months ago
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆24Updated 3 years ago
- BurpSuite extension to convert requests into bcheck scripts☆31Updated last year
- ☆49Updated 3 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 5 months ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆50Updated last month
- CLI tool for discovering related base domains using WhoisXMLAPI's reverse Whois endpoints☆10Updated 9 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆66Updated last year
- ☆53Updated 2 years ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆26Updated 9 months ago
- ☆60Updated 2 years ago
- My workflow made with shell script, some API's and tools. ;)☆10Updated 11 months ago
- ☆56Updated 10 months ago
- ☆7Updated last year
- SALSA 💃⚡ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.☆21Updated 2 months ago
- Pipe nmap verbose output to a usable format for httpx or host:port notation.☆16Updated 2 years ago