chrispetrou/FDsploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/chrispetrou/FDsploit)

chrispetrou / FDsploit

File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.

☆272

Alternatives and similar repositories for FDsploit

Users that are interested in FDsploit are comparing it to the libraries listed below

Sorting:

BoxingOctopusCreative / toxin
View on GitHub
LFI (Local File Inclusion) Exploitation Tool
☆17Jan 4, 2021Updated 5 years ago
sleventyeleven / lfimap
View on GitHub
Automatically exported from code.google.com/p/lfimap
☆16Mar 5, 2016Updated 9 years ago
S1lkys / Auto_LFI
View on GitHub
A simple Script which tests for LFI (Local File Inclusion) via Curl
☆15Mar 11, 2019Updated 6 years ago
fnk0c / dot2moon
View on GitHub
Tool that checks for path traversal traces in a given web application url, plus it is capable of multi-threading, set timeout and 5-layer…
☆46Jul 13, 2018Updated 7 years ago
P0cL4bs / kadimus
View on GitHub
kadimus is a tool to check and exploit lfi vulnerability.
☆562Aug 17, 2020Updated 5 years ago
D35m0nd142 / LFISuite
View on GitHub
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
☆1,914Apr 13, 2022Updated 3 years ago
smirnovvad / rbuster
View on GitHub
yet another dirbuster
☆18Jan 14, 2021Updated 5 years ago
mzfr / liffy
View on GitHub
Local file inclusion exploitation tool
☆928Oct 1, 2025Updated 4 months ago
SpiderMate / B-XSSRF
View on GitHub
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
☆293Aug 23, 2019Updated 6 years ago
chrispetrou / HRShell
View on GitHub
HRShell is an HTTPS/HTTP reverse shell built with flask. It is an advanced C2 server with many features & capabilities.
☆249Sep 9, 2021Updated 4 years ago
Hack-Hut / CrabStick
View on GitHub
Automatic remote/local file inclusion vulnerability analysis and exploit tool
☆60May 8, 2019Updated 6 years ago
Shiva108 / WAES
View on GitHub
CPH:SEC WAES: Web Auto Enum & Scanner - Auto enums website(s) and dumps files as result
☆68Jan 15, 2026Updated last month
zux0x3a / 0xsp-Mongoose
View on GitHub
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations…
☆536Mar 27, 2022Updated 3 years ago
Josue87 / BoomER
View on GitHub
Framework for exploiting local vulnerabilities
☆83Nov 18, 2023Updated 2 years ago
immunIT / drupwn
View on GitHub
Drupal enumeration & exploitation tool
☆612Nov 4, 2020Updated 5 years ago
codingo / VHostScan
View on GitHub
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
☆1,284Aug 18, 2025Updated 6 months ago
nixwizard / kube-alien
View on GitHub
☆25May 9, 2021Updated 4 years ago
jcesarstef / dotdotslash
View on GitHub
Search for Directory Traversal Vulnerabilities
☆458Jan 11, 2026Updated last month
bayotop / off-by-slash
View on GitHub
Burp extension to detect alias traversal via NGINX misconfiguration at scale.
☆265Nov 18, 2021Updated 4 years ago
yassineaboukir / sublert
View on GitHub
Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
☆1,028Feb 5, 2021Updated 5 years ago
chrispetrou / smtp_enum_users
View on GitHub
:e-mail: Enumerate usernames through SMTP service
☆17Jun 30, 2019Updated 6 years ago
0xInfection / XSRFProbe
View on GitHub
The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
☆1,279Feb 10, 2026Updated 2 weeks ago
OWASP / joomscan
View on GitHub
OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/
☆1,171Sep 11, 2024Updated last year
almandin / fuxploider
View on GitHub
File upload vulnerability scanner and exploitation tool.
☆3,301May 8, 2025Updated 9 months ago
maK- / parameth
View on GitHub
This tool can be used to brute discover GET and POST parameters
☆1,393Aug 24, 2019Updated 6 years ago
stefanoj3 / dirstalk
View on GitHub
Modern alternative to dirbuster/dirb
☆395Dec 24, 2023Updated 2 years ago
initstring / uptux
View on GitHub
Linux privilege escalation checks (systemd, dbus, socket fun, etc)
☆298Oct 2, 2019Updated 6 years ago
jaeles-project / jaeles
View on GitHub
The Swiss Army knife for automated Web Application Testing
☆2,322May 8, 2024Updated last year
m8sec / ActiveReign
View on GitHub
A Network Enumeration and Attack Toolset for Windows Active Directory Environments.
☆247Jun 19, 2024Updated last year
swisskyrepo / SSRFmap
View on GitHub
Automatic SSRF fuzzer and exploitation tool
☆3,487Sep 4, 2025Updated 5 months ago
esecuritylab / kostebek
View on GitHub
☆92Dec 8, 2022Updated 3 years ago
luisfontes19 / xxexploiter
View on GitHub
Tool to help exploit XXE vulnerabilities
☆590Feb 4, 2023Updated 3 years ago
m4ll0k / Atlas
View on GitHub
Quick SQLMap Tamper Suggester
☆1,395Jul 18, 2022Updated 3 years ago
aas-n / spraykatz
View on GitHub
Credentials gathering tool automating remote procdump and parse of lsass process.
☆782Jun 20, 2020Updated 5 years ago
safebuffer / PE-Linux
View on GitHub
Linux Privilege Escalation Tool
☆186Apr 12, 2019Updated 6 years ago
TypeError / domained
View on GitHub
Multi Tool Subdomain Enumeration
☆723Apr 11, 2021Updated 4 years ago
jymcheong / AutoTTP
View on GitHub
Automated Tactics Techniques & Procedures
☆260May 26, 2023Updated 2 years ago
RhinoSecurityLabs / SleuthQL
View on GitHub
Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
☆469Nov 14, 2019Updated 6 years ago
wireghoul / dotdotpwn
View on GitHub
DotDotPwn - The Directory Traversal Fuzzer
☆1,106Sep 28, 2022Updated 3 years ago