effortlessdevsec / ninjasworkout
Vulnerable NodeJS Web Application
☆94Updated 8 months ago
Alternatives and similar repositories for ninjasworkout:
Users that are interested in ninjasworkout are comparing it to the libraries listed below
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆105Updated 3 years ago
- Automated Web Recon Shell Scripts☆51Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆87Updated 2 years ago
- Zed Attack Proxy Scripts for finding CVEs and Secrets.☆127Updated 2 years ago
- SetMyKali is a bash based tool to configure and customize kali linux☆69Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- HTTP parameter discovery suite.☆63Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆123Updated 3 weeks ago
- ☆169Updated 3 years ago
- Real world bug bounty wordlists☆112Updated last year
- ☆53Updated 3 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆32Updated 2 years ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆104Updated 4 years ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year
- Host Header Injection Scanner☆44Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- ☆157Updated 3 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆89Updated 10 months ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- a Go code to detect leaks in JS files via regex patterns☆140Updated 3 years ago
- My Tools For Bug Bounty☆66Updated 7 months ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- ☆94Updated 4 years ago
- ☆76Updated 3 years ago
- ☆67Updated 3 years ago
- A list of threat sinks used in the manual security source code review for application security☆70Updated last year