ghsec / webHunt
Web App bug hunting
☆549Updated 2 months ago
Related projects: ⓘ
- A fuzzer for detecting open redirect vulnerabilities☆691Updated 2 months ago
- Open Redirect Payloads☆571Updated 2 years ago
- Automation for javascript recon in bug bounty.☆886Updated last year
- Fetches javascript file from a list of URLS or subdomains.☆735Updated last year
- Generates combination of domain names from the provided input.☆886Updated 2 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆526Updated last month
- A fast DOM based XSS vulnerability scanner with simplicity.☆748Updated last year
- Automating XSS using Bash☆347Updated 5 months ago
- 🎯 Open Redirect Payload List☆509Updated 2 months ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆327Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆937Updated 2 years ago
- Heuristic Vulnerable Parameter Scanner☆562Updated 8 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,185Updated this week
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆441Updated 4 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆745Updated last year
- Local file inclusion exploitation tool☆767Updated last year
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆411Updated 3 years ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆686Updated last year
- ☆365Updated 3 years ago
- Open Redirection Analyzer☆732Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆608Updated 5 months ago
- Tool to find JavaScript files on Websites☆510Updated 10 months ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆515Updated 6 years ago
- A Powerful Subdomain Takeover Tool☆919Updated 11 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆663Updated last year
- ☆408Updated last year
- a javascript change monitoring tool for bugbounties☆579Updated last month
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆682Updated last year
- ☆349Updated 2 years ago
- Tool to help exploit XXE vulnerabilities☆535Updated last year