dub-flow / sessionprobe
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across a list of URLs, highlighting potential authorization issues.
☆446Updated 11 months ago
Alternatives and similar repositories for sessionprobe:
Users that are interested in sessionprobe are comparing it to the libraries listed below
- RedCloudOS is a Cloud Adversary Simulation Operating System for Red Teams to assess the Cloud Security of Leading Cloud Service Providers…☆625Updated 9 months ago
- BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for c…☆405Updated 2 months ago
- ☆475Updated 10 months ago
- Pen Test Report Generation and Assessment Collaboration☆475Updated last week
- ☆236Updated 2 months ago
- Misconfig Mapper is a fast tool to help you uncover security misconfigurations on popular third-party services used by your company and/o…☆689Updated last week
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆343Updated 4 months ago
- Zero-dollar attack surface management tool☆276Updated 11 months ago
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆332Updated last year
- AI-powered ffuf wrapper☆301Updated 4 months ago
- Pentest Report Generator☆397Updated last week
- A RedTeam Toolkit☆394Updated this week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆607Updated last week
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆285Updated last year
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆180Updated 6 months ago
- ☆263Updated last year
- A collection of Active Directory, phishing, mobile technology, system, service, web application, and wireless technology weaknesses that …☆243Updated 2 years ago
- Porch Pirate is the most comprehensive Postman recon / OSINT client and framework that facilitates the automated discovery and exploitati…☆398Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆626Updated last year
- Websec interview questions by tib3rius answered☆307Updated last year
- An open-source self-hosted purple team management web application.☆264Updated this week
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆325Updated 3 weeks ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆404Updated this week
- An offensive data enrichment pipeline☆668Updated last month
- Dredging up secrets from the depths of the file system☆125Updated 4 months ago
- Search for sensitive data in Postman public library.☆202Updated 2 months ago
- A suite for hunting suspicious targets, expose domains and phishing discovery☆351Updated 2 weeks ago
- A streamlined tool for discovering private TLDs for security research.☆180Updated this week
- Find CVEs associated to Linux and public exploits on github☆117Updated last year
- Nuclei templates for honeypots detection.☆195Updated last year