dzonerzy / goWAPT

Related projects: ⓘ

• evilsocket / dirsearch
  A Go implementation of dirsearch.
  ☆266Updated 2 years ago
• raz-varren / xsshell
  An XSS reverse shell framework
  ☆301Updated 5 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆310Updated 5 months ago
• milo2012 / pathbrute
  Pathbrute
  ☆441Updated 4 years ago
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆345Updated 6 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆328Updated 3 years ago
• C-Sto / recursebuster
  rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments
  ☆242Updated 4 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆252Updated 3 months ago
• RhinoSecurityLabs / SleuthQL
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆464Updated 4 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆393Updated 4 years ago
• rmikehodges / hideNsneak
  a CLI for ephemeral penetration testing
  ☆7Updated 4 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆479Updated 3 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 8 months ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆292Updated 4 years ago
• stevenaldinger / decker
  Declarative penetration testing orchestration framework
  ☆288Updated 4 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆321Updated 2 years ago
• EdOverflow / csp
  ☆125Updated this week
• daeken / SSRFTest
  SSRF testing tool
  ☆242Updated last year
• projectdiscovery / dnsprobe
  DNSProb is a tool built on top of retryabledns that allows you to perform multiple dns queries of your choice with a list of user supplie…
  ☆275Updated 3 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆423Updated 4 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆301Updated 2 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆722Updated 3 years ago
• bugbountyforum / XSS-Radar
  ☆317Updated 6 years ago
• hdm / nextnet
  nextnet is a pivot point discovery tool written in Go.
  ☆445Updated 3 years ago
• appsecco / bugcrowd-levelup-subdomain-enumeration
  This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…
  ☆631Updated 5 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆500Updated last year
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆210Updated 2 years ago
• gocaio / goca
  Goca Scanner
  ☆326Updated 11 months ago
• xsscx / Commodity-Injection-Signatures
  Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
  ☆385Updated 2 months ago