esmog / nodexp
NodeXP - A Server Side Javascript Injection tool capable of detecting and exploiting Node.js vulnerabilities
☆106Updated last month
Alternatives and similar repositories for nodexp:
Users that are interested in nodexp are comparing it to the libraries listed below
- Script to automate PUT HTTP method exploitation to get shell☆125Updated 4 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆137Updated 4 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Updated 2 years ago
- subdomain bruteforce list☆101Updated 5 months ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆83Updated 2 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 2 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 7 years ago
- Automated Pentest Tools Designed For Parrot Linux☆85Updated 5 years ago
- A web application for generating custom XSS payloads☆77Updated 5 years ago
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆103Updated 7 years ago
- HTML5 WebSocket message fuzzer☆144Updated 6 years ago
- The simplest way to take an automated screenshot of given URLs. Easy installation! Edit☆48Updated 6 years ago
- Collection of scripts that aid in penetration testing of JSON Web Tokens☆58Updated 6 years ago
- Automatic remote/local file inclusion vulnerability analysis and exploit tool☆60Updated 5 years ago
- PAVELOW Exploit Toolbox is a BASH script that corresponds with your KALI distro to better help your vulnerability hunting and exploiting …☆87Updated 6 years ago
- Local File Inclusion Exploitation Tool (mirror)☆123Updated 8 years ago
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- A tool to generate media files with malicious metadata☆124Updated 6 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆121Updated 5 years ago
- Asynchronous wordlist based DKIM scanner☆58Updated 3 years ago
- Burp Suite extension to discover assets from HTTP response.☆223Updated 2 months ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆103Updated 6 years ago
- Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis☆36Updated 6 years ago
- Deploy payloads to *Nix systems en masse☆108Updated 4 years ago
- Discovers and exploits hosts vulnerable to MS08-067/MS17-010☆41Updated 7 years ago
- A tool for recovering server credentials from a pgadmin4 database☆20Updated 3 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆155Updated 5 years ago
- ☆42Updated 4 years ago