dub-flow / sessionprobeLinks
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
☆450Updated last year
Alternatives and similar repositories for sessionprobe
Users that are interested in sessionprobe are comparing it to the libraries listed below
Sorting:
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆424Updated 5 months ago
- Pen Test Report Generation and Assessment Collaboration☆536Updated last week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆741Updated this week
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆639Updated last year
- ☆492Updated last year
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆704Updated 8 months ago
- Web Security Scanner☆327Updated last month
- The Internets #1 Subdomain Takeover Tool☆261Updated last month
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆124Updated 5 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆362Updated 2 months ago
- Pentest Report Generator☆411Updated last month
- ☆235Updated last year
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆321Updated this week
- 💀 Don't fear the Reaper 👻☆553Updated 2 weeks ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆665Updated 3 months ago
- A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.☆400Updated last week
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆421Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆341Updated last year
- ☆242Updated 5 months ago
- Websec interview questions by tib3rius answered☆308Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆534Updated this week
- Secret Magpie - Secret Detection Tool☆232Updated last year
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆188Updated 10 months ago
- Zero-dollar attack surface management tool☆295Updated last year
- A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …☆247Updated 2 years ago
- Domain_checker application is the trial/demo version for the new EASM (External Attack Surface Management) system called HydrAttack (hydr…☆188Updated last year
- AI-powered ffuf wrapper☆508Updated 7 months ago
- LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and e…☆350Updated last year
- A suite for hunting suspicious targets, expose domains and phishing discovery☆364Updated last month
- Create your own vulnerable by design AWS penetration testing playground☆384Updated 2 months ago