dub-flow / sessionprobeLinks
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
☆462Updated last year
Alternatives and similar repositories for sessionprobe
Users that are interested in sessionprobe are comparing it to the libraries listed below
Sorting:
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆434Updated last month
- Pen Test Report Generation and Assessment Collaboration☆584Updated 2 weeks ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆885Updated last week
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆669Updated last year
- The Internets #1 Subdomain Takeover Tool☆287Updated 6 months ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆738Updated last week
- ☆513Updated last year
- ☆238Updated last year
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆131Updated 10 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆714Updated 3 weeks ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆398Updated 7 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆348Updated this week
- Web Security Scanner☆367Updated last month
- ☆243Updated 10 months ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆221Updated last year
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆443Updated last year
- A suite for hunting suspicious targets, expose domains and phishing discovery☆373Updated 3 weeks ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…☆677Updated this week
- Pentest Report Generator☆438Updated last month
- Find CVEs associated to Linux and public exploits on github☆119Updated 8 months ago
- A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.☆461Updated last week
- Create your own vulnerable by design AWS penetration testing playground☆409Updated 3 months ago
- A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …☆256Updated 3 years ago
- Websec interview questions by tib3rius answered☆308Updated 2 years ago
- Domain_checker application is the trial/demo version for the new EASM (External Attack Surface Management) system called HydrAttack (hydr…☆189Updated last year
- Zero-dollar attack surface management tool☆310Updated last year
- AI-powered ffuf wrapper☆601Updated 2 weeks ago
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆354Updated 2 years ago
- Reconmap is a collaboration-first security operations platform for infosec teams and MSSPs, enabling end‑to‑end engagement management, fr…☆813Updated last week
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆442Updated last year