cujanovic / Open-Redirect-Payloads

Related projects ⓘ

Alternatives and complementary repositories for Open-Redirect-Payloads

• ghsec / webHunt
  Web App bug hunting
  ☆553Updated 4 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆738Updated last year
• jobertabma / relative-url-extractor
  A small tool that extracts relative URLs from a file.
  ☆730Updated 4 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆930Updated last year
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆557Updated 4 years ago
• AlephNullSK / dnsgen
  Generates combination of domain names from the provided input.
  ☆900Updated 4 months ago
• nahamsec / JSParser
  ☆787Updated 11 months ago
• jobertabma / virtual-host-discovery
  A script to enumerate virtual hosts on a server.
  ☆663Updated 6 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• zricethezav / h1domains
  HackerOne "in scope" domains
  ☆398Updated this week
• ehsahil / recon-my-way
  This repository created for personal use and added tools from my latest blog post.
  ☆347Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆668Updated last year
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆639Updated 5 years ago
• nahamsec / recon_profile
  ☆418Updated last year
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆413Updated 3 years ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆528Updated 3 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆636Updated last year
• random-robbie / keywords
  ☆353Updated 2 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆530Updated 2 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆608Updated 8 months ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆897Updated last year
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆481Updated 10 months ago
• allyomalley / LiveTargetsFinder
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆363Updated 2 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆756Updated last year
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆542Updated last year
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆709Updated 4 months ago
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆694Updated last year
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆443Updated 4 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,211Updated last month