cyinnove / apkXLinks
APKx is a high-performance tool written in Go for scanning Android APK files to discover sensitive information like URIs, endpoints, and secrets. It's inspired by APKLeaks but reimplemented in Go with enhanced features and YAML pattern support.
☆58Updated 2 months ago
Alternatives and similar repositories for apkX
Users that are interested in apkX are comparing it to the libraries listed below
Sorting:
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 7 months ago
- A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…☆26Updated 6 months ago
- Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆40Updated last year
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated last year
- ☆55Updated 2 years ago
- External recon toolkit☆48Updated 5 months ago
- ☆31Updated last month
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆67Updated last year
- Formatify is a Burp Suite extension that instantly converts HTTP requests into multiple formats like cURL, Python, PowerShell, and more—s…☆25Updated last month
- Abuse trust-boundaries to bypass firewalls and network controls☆160Updated this week
- AI/LLM local model integration for analysis of reconftw results☆58Updated last month
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆68Updated 2 months ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆54Updated 7 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆91Updated 9 months ago
- A better way of querying certificate transparency logs☆86Updated 2 months ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆58Updated 4 months ago
- Hunt SSL Certificates for interesting keywords on major cloud service providers / internet☆39Updated last month
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆35Updated 3 months ago
- Web cache poisoning vulnerability scanner.☆68Updated 3 years ago
- A tool for inspecting and analyzing mobile application storage files.☆40Updated 3 weeks ago
- ☆35Updated 6 months ago
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆55Updated last year
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆60Updated 9 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- SSLPinDetect is a tool for analyzing Android APKs to detect SSL pinning implementations by scanning for known patterns in decompiled code…☆25Updated 2 months ago
- ☆61Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- ☆86Updated 2 months ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆89Updated 5 months ago