hakaioffsec / navgixLinks
navgix is a multi-threaded golang tool that will check for nginx alias traversal vulnerabilities
☆70Updated 2 years ago
Alternatives and similar repositories for navgix
Users that are interested in navgix are comparing it to the libraries listed below
Sorting:
- Web dashboard for Interactsh client☆220Updated this week
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆270Updated 2 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆255Updated last year
- Subdomains analysis and generation tool. Reveal the hidden!☆240Updated 2 months ago
- Automated learning of regexes for DNS discovery☆369Updated 2 years ago
- Black box fuzzer for web applications☆427Updated 11 months ago
- jolokia-exploitation-toolkit☆290Updated 5 months ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆50Updated last month
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆274Updated last year
- Burpsuite plugin for Interact.sh☆222Updated 11 months ago
- CVE-2024-23897☆198Updated last year
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆206Updated last month
- ☆80Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆283Updated 9 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆356Updated 3 weeks ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆201Updated 11 months ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆291Updated last year
- Grafana Unauthorized arbitrary file reading vulnerability☆359Updated 2 years ago
- ☆204Updated last year
- APIDetector: Efficiently scan for exposed Swagger endpoints across web domains and subdomains. Supports HTTP/HTTPS, multi-threading, and …☆315Updated 2 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆384Updated this week
- Generate tens of thousands of subdomain combinations in a matter of seconds☆270Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆161Updated 6 months ago
- Text4Shell scanner for Burp Suite☆191Updated 2 years ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆181Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆140Updated 11 months ago
- ☆88Updated last year
- Scrape domain names from SSL certificates of arbitrary hosts☆647Updated last year
- Filter and enrich a list of subdomains by level☆205Updated last year