dub-flow / sessionprobeLinks
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
☆460Updated last year
Alternatives and similar repositories for sessionprobe
Users that are interested in sessionprobe are comparing it to the libraries listed below
Sorting:
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆431Updated 8 months ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆823Updated 2 weeks ago
- Pen Test Report Generation and Assessment Collaboration☆566Updated 2 weeks ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆130Updated 8 months ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆719Updated 2 weeks ago
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆663Updated last year
- The Internets #1 Subdomain Takeover Tool☆272Updated 4 months ago
- A humble, and 𝗳𝗮𝘀𝘁, security-oriented HTTP headers analyzer.☆335Updated this week
- ☆500Updated last year
- Web Security Scanner☆337Updated 2 weeks ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆628Updated last month
- ☆241Updated 8 months ago
- Secret Magpie - Secret Detection Tool☆242Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆376Updated 4 months ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆219Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆696Updated 2 weeks ago
- ☆236Updated last year
- Find CVEs associated to Linux and public exploits on github☆119Updated 5 months ago
- A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …☆251Updated 3 years ago
- A powerful scanner to scan your Filesystem, S3, MySQL, Redis, Google Cloud Storage and Firebase storage for PII and sensitive data.☆448Updated last week
- A suite for hunting suspicious targets, expose domains and phishing discovery☆371Updated last month
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆349Updated last year
- Domain_checker application is the trial/demo version for the new EASM (External Attack Surface Management) system called HydrAttack (hydr…☆189Updated last year
- Pentest Report Generator☆428Updated last month
- AI-powered ffuf wrapper☆538Updated 10 months ago
- API Security Vulnerability Scanner designed to help you secure your APIs.☆179Updated this week
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆438Updated last year
- 💀 Don't fear the Reaper 👻☆600Updated 3 weeks ago
- Zero-dollar attack surface management tool☆299Updated last year
- ☆190Updated 5 months ago