effortlessdevsec / ApkRecon
Scanning APK file for URIs, endpoints & secrets.
☆40Updated 3 years ago
Alternatives and similar repositories for ApkRecon:
Users that are interested in ApkRecon are comparing it to the libraries listed below
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 3 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 4 years ago
- Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for m…☆12Updated 3 years ago
- Shodan Favicon Hash Generator By Aziz Hakim @eternyle☆25Updated 8 months ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆28Updated 3 years ago
- ☆14Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆21Updated 4 years ago
- ☆21Updated 3 years ago
- A FireBase DataBase TakeOver Tool along with POC Generator☆33Updated 3 years ago
- Droz_scan is a automated script, that runs all the queries of drozer in a single run☆25Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆17Updated 3 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆17Updated 3 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆33Updated 3 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 2 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- 10 Reset Password Flaws Based on Web Application Security☆11Updated 4 years ago
- ☆42Updated 3 years ago
- XSS Finder Via SSTI☆54Updated last year
- ☆11Updated 2 years ago
- Multithreaded Host Header Redirection Scanner☆13Updated 4 years ago
- This includes all the templates of nuclei collected from different sources☆17Updated 2 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆36Updated 4 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- BurpSiute - BurpBounty Profiles☆19Updated 2 years ago
- Check url is live (*HTTP status code "200 ok" only*).☆14Updated 4 years ago
- Turns a list of URLs into hostnames.☆16Updated last year
- Bug Bounty Tools☆34Updated 4 years ago
- Automate the process of an S3 bucket subdomain takeover via dangling CNAME record☆25Updated 9 months ago
- Tool to automate recon☆43Updated 3 years ago