hahwul / authz0Links
π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
β422Updated 8 months ago
Alternatives and similar repositories for authz0
Users that are interested in authz0 are comparing it to the libraries listed below
Sorting:
- mx-takeover focuses DNS MX records and detects misconfigured MX records.β348Updated last year
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.β512Updated 3 years ago
- Web dashboard for Interactsh clientβ224Updated last month
- Automated learning of regexes for DNS discoveryβ371Updated 2 years ago
- Generate tens of thousands of subdomain combinations in a matter of secondsβ271Updated last year
- Vulnerability Scan with Nucleiβ257Updated 7 months ago
- Gotator is a tool to generate DNS wordlists through permutations.β481Updated 2 years ago
- Http request smuggling vulnerability scannerβ227Updated 2 years ago
- A Security Tool for Enumerating WebSocketsβ355Updated 3 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.β263Updated 10 months ago
- Black box fuzzer for web applicationsβ427Updated 2 weeks ago
- Fast and customizable vulnerability scanner For JIRA written in Pythonβ321Updated 6 months ago
- CrackQL is a GraphQL password brute-force and fuzzing utility.β335Updated 11 months ago
- Scrape domain names from SSL certificates of arbitrary hostsβ652Updated last year
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β383Updated 3 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)β276Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on itβ452Updated last year
- β318Updated last month
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.β447Updated 3 years ago
- Discover new target domains using Content Security Policyβ460Updated 2 weeks ago
- Make URL path combinations using a wordlistβ173Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable β¦β654Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.β71Updated last year
- HTTP Request Smuggling Detection Toolβ514Updated last year
- Prototype pollution scanner using headless chromeβ219Updated 2 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration testβ¦β392Updated this week
- Useful "Match and Replace" burpsuite rulesβ348Updated last year
- β521Updated 2 years ago
- Customisable and automated HTTP header injectionβ253Updated last year
- A projectdiscovery driven attack surface monitoring bot powered by axiomβ182Updated 2 years ago