caioluders / LostAndFound
☆18Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for LostAndFound
- Easily gather all routes related to a NextJs application through parsing of _buildManifest.js☆52Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆13Updated 2 years ago
- ASNPepper - Recon in ASN - Extracting CIDR's - Fast and efficient scanning☆15Updated last week
- Declutters URLs in a fast and flexible way, for improving input for web hacking automations such as crawlers and vulnerability scans.☆48Updated last year
- A better way of querying certificate transparency logs☆76Updated last year
- burp extension for brazilian stuff☆25Updated last year
- 😛 Primefaces 5.X EL Injection Exploit (CVE-2017-1000486)☆19Updated last year
- Burp Extension to identify PII data☆21Updated 3 years ago
- Some Useful Tricks for Pentest Android and iOS Apps☆59Updated last week
- A websocket-based reverse (javascript) shell for XSS attacks.☆29Updated 2 years ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆18Updated 4 months ago
- ☆7Updated 11 months ago
- BurpSuite extension to convert requests into bcheck scripts☆30Updated last year
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Updated 8 months ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆29Updated this week
- Colored Cat is a syntax highlighter file reader.☆16Updated 4 months ago
- PoC for the CVE-2021-4034 vulnerability, affecting polkit < 0.120.☆25Updated 2 years ago
- ☆13Updated last year
- ☆46Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 2 weeks ago
- pugrecon is a bash script for automatic recon of common vulnerabilities, misconfigurations and files on domains.☆16Updated 3 years ago
- Script to read input from stdin and encode it☆18Updated last year
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆34Updated last year
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Updated 2 years ago
- A powerful pentesting tool for proactive detection and exploitation of dependency confusion vulnerabilities in Node.js projects. Enhance …☆13Updated last year
- A proof of concept program that pulls and parses security.txt files at mass.☆27Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆58Updated last month
- BBT - Bug Bounty Tools☆49Updated 3 years ago
- Repositório criado com intuito de reunir templates da ferramenta Nuclei dentro do contexto Brasil☆70Updated last year