edduu / Arjun
HTTP parameter discovery suite.
☆94Updated 4 years ago
Related projects: ⓘ
- ☆28Updated 3 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆136Updated 4 years ago
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆65Updated 5 years ago
- ☆61Updated this week
- Suite of programs meant to aid in bug hunting and security assessments☆75Updated 4 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆166Updated 3 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 3 years ago
- Bug Bounty Dork☆67Updated 2 years ago
- Various Payload wordlists☆233Updated 4 years ago
- Push notifications for passive DNS data☆105Updated 8 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆102Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆106Updated last year
- Proof of concept for CVE-2020-5902☆72Updated 4 years ago
- This repo includes my analysis of some public reports.☆57Updated 3 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 5 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆100Updated 4 years ago
- A collection of scripts to extend Burp Suite☆138Updated 5 years ago
- Horizontal Domain Discovery☆74Updated last year
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆108Updated 2 years ago
- Repo of useful scripts☆104Updated 4 years ago
- ☆20Updated last year
- Simple "postMessage logger" Chrome extension☆92Updated 4 years ago
- CRLF and open redirect fuzzer☆108Updated 3 years ago
- Recon Custom WordList Ganerator☆55Updated 4 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆88Updated 5 months ago
- ☆129Updated this week
- ☆45Updated this week
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago