effortlessdevsec / ninjasworkout
Vulnerable NodeJS Web Application
☆93Updated 7 months ago
Alternatives and similar repositories for ninjasworkout:
Users that are interested in ninjasworkout are comparing it to the libraries listed below
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- API Pentesting notes.☆96Updated 4 months ago
- Tool to generate csrf payloads based on vulnerable requests☆62Updated 4 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆87Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- Advanced Reconnaissance and Web Application Discovery☆79Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- ☆48Updated 4 years ago
- Zed Attack Proxy Scripts for finding CVEs and Secrets.☆127Updated 2 years ago
- Wicked sick v2.0 script is intended to automate your reconnaissance process in an organized fashion.☆146Updated 2 years ago
- ☆168Updated 3 years ago
- A Fast Broken Link Hijacker Tool written in Python☆99Updated 11 months ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- ☆53Updated 3 years ago
- Customisable and automated HTTP header injection☆244Updated 9 months ago
- ☆67Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆104Updated 3 years ago
- This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities☆90Updated last year
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- Automated Web Recon Shell Scripts☆51Updated 3 years ago
- Prototype Pollution Scanner☆113Updated 3 years ago
- ☆111Updated 2 years ago
- Host Header Injection Scanner☆44Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Attack Surface Discovery Tool☆108Updated 6 months ago
- Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…☆52Updated 3 years ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆50Updated 4 years ago