ffx64 / wprecon
WRecon, is a tool for the recognition of vulnerabilities and blackbox information for wordpress.
☆16Updated 2 years ago
Alternatives and similar repositories for wprecon:
Users that are interested in wprecon are comparing it to the libraries listed below
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆501Updated 2 years ago
- A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python☆199Updated 3 years ago
- Nuclei templates written by us.☆266Updated 3 years ago
- Js File Scanner☆167Updated 3 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆294Updated 5 months ago
- 🚀 A DNS automated scanner and tool 🖱️ (Zone Transfer, DNS Zone Takeover, Subdomain Takeover).☆294Updated 4 months ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆334Updated last year
- Pentest: Subdomains enumeration tool for penetration testers.☆157Updated 9 months ago
- Another version of katana, more automated but less stable. the purpose of this small tool is to run a Google based passive recon against …☆225Updated 3 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆260Updated 2 months ago
- ☆285Updated 2 years ago
- It's a simple tool for test vulnerability shellshock☆114Updated 3 years ago
- Customisable and automated HTTP header injection☆243Updated 7 months ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆448Updated last year
- 🦁 Identify Joomla version, scan for vulnerabilities and sensitive files☆170Updated 9 months ago
- Automating XSS using Bash☆353Updated 11 months ago
- Finding XSS during recon☆256Updated 2 years ago
- Turns any junk text into a usable wordlist for brute-forcing.☆218Updated 11 months ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆295Updated 5 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆267Updated last month
- A tool to check a bunch of URLs that contain reflecting params.☆559Updated 6 months ago
- A fast and minimal JS endpoint extractor☆336Updated 3 months ago
- This is go CLI tool for send fast Multiple get HTTP request.☆269Updated 2 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆287Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.☆465Updated 2 years ago
- Python based scanner to find potential SSRF parameters☆310Updated this week
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆131Updated 3 years ago
- BugBuntu Linux☆154Updated 3 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆242Updated 2 years ago
- HTTP Request Smuggling Detection Tool☆485Updated last year