detectify / ugly-ducklingLinks
Ugly Duckling is a lightweight scanner built specifically for our Crowdsource community to submit proof-of-concept modules
☆188Updated 3 years ago
Alternatives and similar repositories for ugly-duckling
Users that are interested in ugly-duckling are comparing it to the libraries listed below
Sorting:
- Weaponizing Live CT logs for automated monitoring of assets☆134Updated 4 years ago
- ASN reconnaissance script☆131Updated last year
- Cross Origin Resource Sharing MisConfiguration Scanner☆175Updated 3 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆163Updated 2 years ago
- GraphQL security workshop labs☆113Updated 2 months ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆204Updated 2 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆93Updated 2 months ago
- ☆72Updated 5 years ago
- Prototype pollution scanner using headless chrome☆219Updated 3 years ago
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆99Updated 3 years ago
- An open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.☆217Updated 4 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated last year
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆136Updated 5 years ago
- A reverse whois tool based on Whoxy API.☆167Updated last year
- Custom scripts for the PIPER Burp extensions.☆98Updated 2 years ago
- GraphQL security testing tool☆125Updated 3 years ago
- DNS and Target HTTP History Local Storage and Search☆64Updated 4 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆214Updated 5 years ago
- A simple way of sending messages from the CLI output to your Slack with webhook.☆116Updated last year
- Bucky (An automatic S3 bucket discovery tool)☆197Updated 3 years ago
- Python utility to takeover domains vulnerable to AWS NS Takeover☆86Updated 2 years ago
- ☆170Updated 4 years ago
- Searching for virtual hosts among non-resolvable domains☆88Updated 5 years ago
- ☆69Updated 3 years ago
- A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…☆193Updated 5 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆212Updated last year
- Detectify Crowdsource Challenge☆70Updated 3 years ago
- Burp Automator - A Burp Suite Automation Tool. It provides a high level CLI and Python interfaces to Burp Suite scanner and can be used t…☆249Updated last month
- Pentesting/Bugbounty Dockerfiles.☆177Updated 4 years ago