detectify / ugly-ducklingLinks
Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
☆188Updated 3 years ago
Alternatives and similar repositories for ugly-duckling
Users that are interested in ugly-duckling are comparing it to the libraries listed below
Sorting:
- Weaponizing Live CT logs for automated monitoring of assets☆135Updated 3 years ago
- DNS and Target HTTP History Local Storage and Search☆64Updated 4 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 10 months ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆161Updated 2 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆174Updated 3 years ago
- ASN reconnaissance script☆128Updated last year
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆203Updated 2 years ago
- ☆71Updated 4 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆92Updated 3 weeks ago
- Prototype pollution scanner using headless chrome☆219Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆98Updated 2 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- ☆108Updated 4 years ago
- ☆152Updated last year
- ☆68Updated 3 years ago
- GraphQL security workshop labs☆112Updated last week
- Scripts to help with different ffuf tasks and workflows☆221Updated last year
- Searching for virtual hosts among non-resolvable domains☆88Updated 5 years ago
- xss development frameworks, with the goal of making payload writing easier.☆146Updated 11 months ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆134Updated 4 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆182Updated 2 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆81Updated 2 years ago
- Make concurrent requests with the curl command-line tool☆74Updated 5 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 4 years ago
- Bucky (An automatic S3 bucket discovery tool)☆197Updated 3 years ago
- A script that can resolve an input file of domains and scan them with masscan☆155Updated 4 years ago
- Clientside vulnerability / reflected xss fuzzer☆150Updated 2 years ago
- Workshop given at Hack in Paris 2019☆122Updated 2 years ago