daffainfo / apiguesser-web

Related projects: ⓘ

• daffainfo / apiguesser
  Go script to guess an API key / OAuth token found during pentest. CLI version of https://github.com/daffainfo/apiguesser-web/
  ☆43Updated 2 years ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• justmorpheus / burp-automation
  Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
  ☆47Updated last year
• apapedulimu / Learn-Source-Code-Review
  Learning source code review, spot vulnerability, find some ways how to fix it.
  ☆26Updated last year
• dwisiswant0 / nodep
  A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.
  ☆27Updated 2 years ago
• hakluke / vulnerable-code-examples
  ☆11Updated this week
• PortSwigger / wordlist-extractor
  ☆21Updated 6 years ago
• shelld3v / flydns
  Related subdomains finder
  ☆29Updated 2 years ago
• dwisiswant0 / nuclei-templates-dir
  Nuclei Templates Directory
  ☆49Updated last week
• geeknik / nuclei-template-generator
  A simple tool which makes creating nuclei templates even easier.
  ☆35Updated 2 months ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆39Updated 11 months ago
• PortSwigger / ator
  ☆28Updated 4 months ago
• defparam / h1data
  ☆23Updated 2 years ago
• emgaurav / objectify-s3
  Objectify-s3 is a tool that recursively checks AWS S3 buckets and objects for misconfigured permissions.
  ☆15Updated last month
• MistSpark / DNS-Wordlists
  part of my wordlist to bruteforce DNS to find subdoamains.
  ☆62Updated 3 years ago
• Josue87 / roboxtractor
  Extract endpoints marked as disallow in robots files to generate wordlists.
  ☆53Updated 2 years ago
• muffyhub / Mindmaps
  ☆19Updated 3 years ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆55Updated 3 years ago
• redhuntlabs / BurpSuite-Asset_History
  ☆33Updated 4 years ago
• adanalvarez / SimpleAutoBurp
  Python script to launch burp scans automatically
  ☆32Updated 3 years ago
• Xib3rR4dAr / WannaRace
  WebApp intentionally made vulnerable to Race Condition for practicing Race Condition
  ☆22Updated 2 years ago
• AlfredBerg / dnsline
  Tool for making it easy to collect dns results from the CLI
  ☆39Updated last month
• devl00p / tekover
  Subdomain takeover scanner using Python asyncio
  ☆18Updated last year
• redhuntlabs / Project-Resonance
  ☆47Updated 3 months ago
• gdraperi / slurp-1
  S3 bucket enumerator
  ☆29Updated 5 years ago
• ne0z / DamnVulnerableMicroServices
  This is vulnerable microservice written in many language to demonstrating OWASP API Top Security Risk (under development)
  ☆39Updated last year
• R0X4R / scvault
  Custom scripts for directory fuzzing, subdomain enumeration, and more.
  ☆43Updated 2 years ago
• drsigned / sigurls
  ☆55Updated this week
• Sprocket-Security / cvetrends
  cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com
  ☆37Updated 2 years ago