dionach / CMSmap
CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
☆1,099Updated 3 years ago
Alternatives and similar repositories for CMSmap:
Users that are interested in CMSmap are comparing it to the libraries listed below
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,118Updated 8 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,811Updated 3 years ago
- Quick SQLMap Tamper Suggester☆1,375Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,723Updated last year
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,422Updated last year
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,303Updated 7 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,403Updated 4 months ago
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,206Updated 3 months ago
- CSRF Scanner☆565Updated 10 months ago
- 🔱 Powerfull XSS Scanning and Parameter analysis tool&gem☆1,272Updated 2 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,180Updated 2 months ago
- BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …☆533Updated 3 years ago
- A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.☆1,331Updated last year
- File upload vulnerability scanner and exploitation tool.☆3,198Updated this week
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,625Updated 5 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,232Updated last year
- Automated & Manual Wordlists provided by Assetnote☆1,431Updated 9 months ago
- Subdomain Takeover tool written in Go☆1,966Updated last year
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,021Updated this week
- A python script that finds endpoints in JavaScript files☆3,934Updated last year
- Bruteforcing from various scanner output - Automatically attempts default creds on found services.☆2,242Updated this week
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,148Updated 10 months ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,166Updated 11 months ago
- ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.☆795Updated last week
- A Powerful Subdomain Takeover Tool☆950Updated last year
- ☆1,198Updated 4 months ago
- Burp plugin able to find reflected XSS on page in real-time while browsing on site☆1,155Updated 4 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,712Updated 10 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,398Updated 6 months ago
- Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns☆1,513Updated last year