hipotermia / vaya-ciego-nen
Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.
☆42Updated 2 years ago
Alternatives and similar repositories for vaya-ciego-nen:
Users that are interested in vaya-ciego-nen are comparing it to the libraries listed below
- Suite of programs meant to aid in bug hunting and security assessments☆77Updated 5 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆71Updated 4 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- ☆59Updated 9 months ago
- Recon Custom WordList Ganerator☆57Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated 9 months ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago
- A XSS mind map ;)☆56Updated 9 years ago
- subdomain bruteforce list☆101Updated 5 months ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 2 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- A collection of simple tools and poc-builders☆39Updated 2 years ago
- Extract relative urls from a heap snapshot☆86Updated 3 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- services-names-wordlist☆82Updated 4 months ago
- Handy bash and python scripts for bug bounty hunting!☆47Updated 3 years ago
- ☆38Updated 4 years ago
- ☆48Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆111Updated last year
- Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated…☆32Updated 5 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- Simple script to get your private/public or both programs using the Hackerone graphql.☆22Updated 5 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- ☆76Updated 4 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆67Updated 3 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- HTTP parameter discovery suite.☆94Updated 4 years ago
- Horizontal Domain Discovery☆76Updated last year
- ☆29Updated 3 years ago