daxAKAhackerman / XSS-Catcher
A blind XSS detection and XSS data capture framework
☆165Updated this week
Related projects: ⓘ
- Burp Bounty profiles compilation, feel free to contribute!☆143Updated 2 years ago
- Burp Extension for easily creating Wordlists☆208Updated 2 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆147Updated last year
- Unofficial documentation for the great tool Param Miner☆169Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆222Updated 2 years ago
- Nuclei templates written by us.☆264Updated 3 years ago
- ☆157Updated this week
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆287Updated last year
- A script that can resolve an input file of domains and scan them with masscan☆155Updated 4 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆144Updated 4 years ago
- Prototype pollution scanner using headless chrome☆196Updated 2 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- Urls de-duplication tool for better recon.☆135Updated 2 months ago
- You can read the writeup on this script here☆192Updated 2 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆176Updated 3 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆213Updated 5 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆177Updated 3 months ago
- Bucky (An automatic S3 bucket discovery tool)☆189Updated 2 years ago
- ☆221Updated 3 months ago
- Check AWS S3 instances for read/write/delete access☆119Updated 2 years ago
- Random utilities from my security projects that might be useful to others☆175Updated 3 years ago
- ☆141Updated 2 years ago
- Hidden parameters discovery suite☆220Updated last year
- A Tool for Domain Flyovers☆89Updated last month
- A reverse whois tool based on Whoxy API.☆156Updated 5 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆287Updated last year
- ☆192Updated this week
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆257Updated 2 months ago
- Python library and CLI for the Bug Bounty Recon API☆220Updated 3 years ago