ghsec / webHunt
Web App bug hunting
☆556Updated 8 months ago
Alternatives and similar repositories for webHunt:
Users that are interested in webHunt are comparing it to the libraries listed below
- Open Redirect Payloads☆599Updated 4 months ago
- Fetches javascript file from a list of URLS or subdomains.☆755Updated last year
- Automation for javascript recon in bug bounty.☆935Updated last year
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆334Updated last year
- ☆370Updated 3 years ago
- Heuristic Vulnerable Parameter Scanner☆580Updated last year
- A fuzzer for detecting open redirect vulnerabilities☆729Updated 7 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆559Updated 6 months ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆948Updated last month
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆443Updated 4 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆953Updated 3 years ago
- ☆423Updated 2 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆793Updated 2 years ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆413Updated 4 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆622Updated 3 months ago
- Default signature for Jaeles Scanner☆320Updated 2 years ago
- Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…☆365Updated 2 years ago
- Tool to help exploit XXE vulnerabilities☆553Updated 2 years ago
- Open Redirection Analyzer☆763Updated last year
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆525Updated 6 years ago
- ☆358Updated 3 years ago
- Tool to find JavaScript files on Websites☆522Updated last year
- A fast DOM based XSS vulnerability scanner with simplicity.☆785Updated 2 years ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆358Updated last year
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,259Updated 5 months ago
- Takes a list of URLs and returns their HTTP response codes☆391Updated last year
- Automating XSS using Bash☆353Updated 10 months ago
- A small tool that extracts relative URLs from a file.☆742Updated 4 years ago
- HackerOne "in scope" domains☆426Updated this week
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆782Updated last year