ghsec / webHunt

Related projects: ⓘ

• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆691Updated 2 months ago
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆571Updated 2 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆886Updated last year
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆735Updated last year
• AlephNullSK / dnsgen
  Generates combination of domain names from the provided input.
  ☆886Updated 2 months ago
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆526Updated last month
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆748Updated last year
• theinfosecguy / QuickXSS
  Automating XSS using Bash
  ☆347Updated 5 months ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆509Updated 2 months ago
• pikpikcu / XRCross
  XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…
  ☆327Updated last year
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆937Updated 2 years ago
• s0md3v / Parth
  Heuristic Vulnerable Parameter Scanner
  ☆562Updated 8 months ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,185Updated this week
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆441Updated 4 years ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆745Updated last year
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆767Updated last year
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆411Updated 3 years ago
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆686Updated last year
• harsh-bothra / Bheem
  ☆365Updated 3 years ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆732Updated last year
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆608Updated 5 months ago
• robre / scripthunter
  Tool to find JavaScript files on Websites
  ☆510Updated 10 months ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆515Updated 6 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆919Updated 11 months ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆663Updated last year
• nahamsec / recon_profile
  ☆408Updated last year
• robre / jsmon
  a javascript change monitoring tool for bugbounties
  ☆579Updated last month
• knassar702 / scant3r
  ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )
  ☆682Updated last year
• random-robbie / keywords
  ☆349Updated 2 years ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆535Updated last year