dub-flow / sessionprobeLinks
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
☆450Updated last year
Alternatives and similar repositories for sessionprobe
Users that are interested in sessionprobe are comparing it to the libraries listed below
Sorting:
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆421Updated 5 months ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆637Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆659Updated 2 months ago
- ☆490Updated last year
- Pen Test Report Generation and Assessment Collaboration☆531Updated this week
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆732Updated 2 weeks ago
- ☆242Updated 5 months ago
- AI-powered ffuf wrapper☆496Updated 6 months ago
- Pentest Report Generator☆410Updated 2 weeks ago
- Zero-dollar attack surface management tool☆292Updated last year
- A suite for hunting suspicious targets, expose domains and phishing discovery☆361Updated 2 weeks ago
- A RedTeam Toolkit☆400Updated 2 months ago
- Nuclei templates for honeypots detection.☆196Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆358Updated last month
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆342Updated last year
- An offensive data enrichment pipeline☆733Updated this week
- The Internets #1 Subdomain Takeover Tool☆260Updated 2 weeks ago
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆336Updated 3 months ago
- Web Security Scanner☆323Updated last week
- Find CVEs associated to Linux and public exploits on github☆118Updated 2 months ago
- ☆492Updated 2 weeks ago
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆421Updated last year
- Websec interview questions by tib3rius answered☆309Updated last year
- A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …☆246Updated 2 years ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆188Updated 9 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆871Updated last year
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆703Updated 8 months ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.☆415Updated 8 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆642Updated last year
- ☆312Updated last year