hahwul / XSS-Payload-without-Anything

Related projects ⓘ

Alternatives and complementary repositories for XSS-Payload-without-Anything

• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆116Updated 3 years ago
• incogbyte / jsearch
  ☆28Updated 3 years ago
• dubs3c / Injectus
  CRLF and open redirect fuzzer
  ☆109Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• JavierOlmedo / UltimateCMSWordlists
  📚 An ultimate collection wordlists of the best-known CMS
  ☆84Updated 5 months ago
• kleiton0x00 / CRLF-one-liner
  A simple Bash one liner with aim to automate CRLF vulnerability scanning.
  ☆68Updated 4 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆102Updated 4 years ago
• BitTheByte / BitBlinder
  BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
  ☆107Updated last year
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆105Updated 2 years ago
• devpwn / xmlrpc-scan
  golang tool to scan domains or single domains with know security issues against xmlrpc
  ☆59Updated last year
• edduu / Arjun
  HTTP parameter discovery suite.
  ☆94Updated 4 years ago
• Zarcolio / wwwordlist
  Wwwordlist is a wordlist generator for pentesters and bug bounty hunters. It extracts words from HTML, URLs, JS/HTTP/input variables, quo…
  ☆101Updated last year
• ozguralp / synackapi
  ☆60Updated 3 months ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• random-robbie / bugbountydork
  Bug Bounty Dork
  ☆67Updated 2 years ago
• ptswarm / ptswarm-twitter
  ☆75Updated 3 years ago
• dariusztytko / vhosts-sieve
  Searching for virtual hosts among non-resolvable domains
  ☆86Updated 4 years ago
• xer0times / SQLi-Query-Tampering
  SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…
  ☆150Updated 4 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆216Updated last month
• ghostlulzhacks / waybackMachine
  ☆58Updated 3 years ago
• ghostlulzhacks / s3brute
  s3 brute force tool
  ☆44Updated 3 years ago
• codingo / microsubs
  A collection of code for interacting with API sources directly to improve your understanding of those services.
  ☆65Updated 3 years ago
• orlyjamie / asnrecon
  ASN reconnaissance script
  ☆124Updated 9 months ago
• ZephrFish / BurpFeed
  Hacked together script for feeding urls into Burp's Sitemap
  ☆92Updated 2 years ago