hipotermia / vaya-ciego-nenView external linksLinks
Detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.
☆39Jan 20, 2023Updated 3 years ago
Alternatives and similar repositories for vaya-ciego-nen
Users that are interested in vaya-ciego-nen are comparing it to the libraries listed below
Sorting:
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆48Jan 11, 2023Updated 3 years ago
- Small script to check a list of domains against open redirect vulnerability☆28Jan 22, 2022Updated 4 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆74Nov 5, 2020Updated 5 years ago
- This project is a Python script that exploits the CVE-2023-24489 vulnerability in ShareFile. It allows remote command execution on the ta…☆13Jul 12, 2023Updated 2 years ago
- ☆16May 3, 2021Updated 4 years ago
- Search for secrets inside user data attached to EC2 instances on multiple AWS accounts☆16Jun 19, 2024Updated last year
- take a list of resolved subdomains and output any corresponding CNAMES en masse.☆18Jan 29, 2026Updated 2 weeks ago
- Tool to extract & validate google fcm server keys from apks☆30Jan 20, 2021Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Apr 17, 2020Updated 5 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆16Mar 31, 2021Updated 4 years ago
- convert secret patterns to gf compatible.☆38Feb 11, 2023Updated 3 years ago
- tool that generates bypasses for open redirects☆51Apr 18, 2022Updated 3 years ago
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆188Aug 3, 2019Updated 6 years ago
- Explanation of All the Payloads Used in Pentester Academy's JS for Pentester Course☆16Dec 27, 2020Updated 5 years ago
- ☆57Sep 27, 2022Updated 3 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆86May 6, 2023Updated 2 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆34Nov 8, 2021Updated 4 years ago
- Test the speed and reliability of a list of DNS servers☆22Dec 9, 2020Updated 5 years ago
- Scans tcl for command injection☆17Mar 8, 2020Updated 5 years ago
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- OpenBugBounty - https://www.openbugbounty.org/ programs list☆23Mar 15, 2021Updated 4 years ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆57Nov 24, 2024Updated last year
- Authenticated SSRF in Grafana☆83Jun 24, 2024Updated last year
- Another Subdomain ENumeration Tool☆13Oct 15, 2022Updated 3 years ago
- Converts a hostname (or URI) to IP address using your local resolver☆26Mar 31, 2024Updated last year
- A collection of one off hacks and simple scripts☆26Mar 21, 2023Updated 2 years ago
- Misc stuff from internet☆12Nov 5, 2025Updated 3 months ago
- Keep track of changes in website with WEBSY☆35May 22, 2023Updated 2 years ago
- A Burp extension to Fuzz URLs for HTTP parser inconsistencies☆12Jan 9, 2024Updated 2 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- Command line tool for testing CRLF injection on a list of domains.☆166Apr 14, 2024Updated last year
- This tool will scan all the URL's in the file and will provide Content-Length, Status-Code, Server and more.☆36Dec 22, 2021Updated 4 years ago
- ☆13Feb 18, 2022Updated 3 years ago
- A centralized dashboard for running and scheduling WordPress scans powered by wpscan utility.☆77Feb 23, 2020Updated 5 years ago
- A tool for testing subdomain takeover possibilities at a mass scale.☆50May 23, 2021Updated 4 years ago
- Finds Directory Listings or open S3 buckets from a list of URLs☆52Dec 1, 2021Updated 4 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆138Sep 21, 2020Updated 5 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆32Jan 17, 2022Updated 4 years ago