hahwul / authz0Links
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
☆422Updated 2 weeks ago
Alternatives and similar repositories for authz0
Users that are interested in authz0 are comparing it to the libraries listed below
Sorting:
- Web dashboard for Interactsh client☆225Updated 2 months ago
- Vulnerability Scan with Nuclei☆260Updated 9 months ago
- Generate tens of thousands of subdomain combinations in a matter of seconds☆271Updated last year
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆511Updated 3 years ago
- mx-takeover focuses DNS MX records and detects misconfigured MX records.☆357Updated 2 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆280Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Python☆322Updated 7 months ago
- Http request smuggling vulnerability scanner☆226Updated 3 years ago
- Automated learning of regexes for DNS discovery☆371Updated 2 years ago
- A Security Tool for Enumerating WebSockets☆360Updated 3 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆175Updated 9 months ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆263Updated last year
- Gotator is a tool to generate DNS wordlists through permutations.☆487Updated 3 years ago
- ☆326Updated last month
- Black box fuzzer for web applications☆432Updated last month
- Burpsuite plugin for Interact.sh☆227Updated last year
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆295Updated 11 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆274Updated 5 months ago
- Discover new target domains using Content Security Policy☆479Updated this week
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆388Updated 3 years ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆450Updated 3 years ago
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- Make URL path combinations using a wordlist☆173Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆187Updated 3 years ago
- ☆522Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆349Updated last year
- HTTP Request Smuggling Detection Tool☆520Updated last year
- Build your own reconnaissance system with Osmedeus Next Generation☆197Updated 2 weeks ago
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆279Updated last year