hahwul / xssmazeLinks
XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnerabilities.
☆26Updated 3 months ago
Alternatives and similar repositories for xssmaze
Users that are interested in xssmaze are comparing it to the libraries listed below
Sorting:
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆23Updated 11 months ago
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆44Updated last year
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Updated last year
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆23Updated 2 weeks ago
- Find CVEs that don't have a Detectify modules.☆22Updated 2 years ago
- ☆19Updated last year
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆35Updated last year
- ☆15Updated 2 years ago
- your bestfried for finding LinkedIn Employees on github☆16Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated 2 years ago
- bash script for automating subdomain enumeration process either passive or active☆27Updated 7 months ago
- Automated HTTP Request Repeating With Burp Suite☆38Updated 2 years ago
- List of custom Nuclei templates☆15Updated last year
- Get list of subsidiaries for a selected company☆29Updated 6 months ago
- A simple utility to fetch freshly updated DNS resolvers☆19Updated last year
- Smart and efficient tool to automate open redirect detection at scale.☆8Updated 3 years ago
- Repo for hosting rayder workflows☆61Updated last year
- ☆15Updated 2 weeks ago
- Burp extension to track your current IP address. Extension focused for red teams where the attacker needs to log all used IP addresses.☆25Updated last year
- Nuclei template for CVE-2024-23897 (Jenkins LFI Vulnerability)☆18Updated last year
- Extract endpoints marked as disallow in robots files to generate wordlists.☆57Updated 3 years ago
- Python script implementing the favicon hash trick to find subdomains.☆37Updated 2 years ago
- CVE-2023-6063 (WP Fastest Cache < 1.2.2 - UnAuth SQL Injection)☆29Updated last year
- Find subdomains by searching public certificate records☆16Updated last year
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated 11 months ago
- Search for sensitive data in Postman public library. Original work from https://github.com/cosad3s/postleaks☆26Updated last year
- Simple recon tool automates your recon process☆17Updated 2 years ago
- Xss payload for bypassing waf☆17Updated 5 years ago
- Blind SQL Injection (BSQLI) Data Exploration Tool☆18Updated 8 years ago
- Tool for fetching all the available waybackmachine snapshot urls☆21Updated 9 months ago