caioluders / LostAndFound
☆20Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for LostAndFound
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆52Updated last year
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆49Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆60Updated 10 months ago
- burp extension for brazilian stuff☆25Updated last year
- A better way of querying certificate transparency logs☆75Updated last year
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆39Updated this week
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆13Updated 2 years ago
- ☆7Updated last year
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆36Updated last year
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆18Updated 5 months ago
- ASNPepper - Recon in ASN - Extracting CIDR's - Fast and efficient scanning☆16Updated 3 weeks ago
- 😛 Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)☆19Updated last year
- BurpSuite extension to convert requests into bcheck scripts☆30Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 3 weeks ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated 8 months ago
- A powerful pentesting tool for proactive detection and exploitation of dependency confusion vulnerabilities in Node.js projects. Enhance …☆13Updated last year
- A websocket-based reverse (javascript) shell for XSS attacks.☆29Updated 2 years ago
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆24Updated 2 years ago
- Script to read input from stdin and encode it☆18Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- Burp Extension to identify PII data☆21Updated 3 years ago
- Some Useful Tricks for Pentest Android and iOS Apps☆61Updated 3 weeks ago
- Identify virtual hosts by similarity comparison☆116Updated 3 months ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Updated 2 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆53Updated last year
- ☆64Updated last year
- The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks☆40Updated 8 months ago
- ☆56Updated last year
- Create your own recon & vulnerability scanner with Trickest and GitHub☆49Updated last year
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆128Updated 2 months ago