devpwn / xmlrpc-scan
golang tool to scan domains or single domains with know security issues against xmlrpc
☆62Updated last year
Alternatives and similar repositories for xmlrpc-scan:
Users that are interested in xmlrpc-scan are comparing it to the libraries listed below
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆65Updated 2 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆120Updated 3 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- ☆75Updated 10 months ago
- My Tools For Bug Bounty☆66Updated 6 months ago
- ☆37Updated last month
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆87Updated 2 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated 9 months ago
- Prototype Pollution Scanner☆113Updated 3 years ago
- s3 brute force tool☆44Updated 3 years ago
- ☆95Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Find subdomains and takeovers.☆84Updated 2 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- ☆87Updated 3 years ago
- Signatures for jaeles scanner by @j3ssie☆116Updated 11 months ago
- ☆77Updated 2 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆65Updated last year
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆48Updated 2 years ago
- Bash script to automate Bug Bounty Reconnaissance☆37Updated 4 years ago
- Host Header Injection Checker☆80Updated 3 years ago
- ☆93Updated 4 years ago