effortlessdevsec / ApkRecon
Scanning APK file for URIs, endpoints & secrets.
☆40Updated 3 years ago
Alternatives and similar repositories for ApkRecon:
Users that are interested in ApkRecon are comparing it to the libraries listed below
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 4 years ago
- Turns a list of URLs into hostnames.☆15Updated 2 years ago
- A FireBase DataBase TakeOver Tool along with POC Generator☆33Updated 3 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 3 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆28Updated 3 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- Just lists of lists of lists !☆16Updated last month
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆21Updated 4 years ago
- ☆21Updated 3 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 3 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- Multithreaded Host Header Redirection Scanner☆13Updated 4 years ago
- ☆42Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- 10 Reset Password Flaws Based on Web Application Security☆11Updated 4 years ago
- ☆20Updated last year
- Find CVEs that don't have a Detectify modules.☆21Updated last year
- ☆21Updated 4 years ago
- Funny Fuzzing Wordlist☆12Updated 2 years ago
- Oneliners curated from my experience and from the internet☆22Updated 4 years ago
- ☆14Updated 3 years ago
- Alternative to XSS Hunter for blind XSS.☆50Updated 2 years ago
- ☆60Updated 3 years ago
- Bug Bounty Tools☆34Updated 4 years ago
- Check url is live (*HTTP status code "200 ok" only*).☆14Updated 4 years ago
- Tool to extract & validate google fcm server keys from apks☆28Updated 4 years ago
- Advanced Recon Tool☆26Updated 4 years ago