humblelad / Awesome-XSS-PayloadsView external linksLinks
Exotic and uncommon XSS Vectors to hit the target as quickly as possible.
☆20May 27, 2020Updated 5 years ago
Alternatives and similar repositories for Awesome-XSS-Payloads
Users that are interested in Awesome-XSS-Payloads are comparing it to the libraries listed below
Sorting:
- Quick tool to create custom wordlists like how fuzzers work☆10Sep 29, 2023Updated 2 years ago
- WebApp for BugBounty Hunters☆14Mar 24, 2017Updated 8 years ago
- ☆18Nov 24, 2020Updated 5 years ago
- Extract metadata with SSRF (Server-Side Request Forgery)☆16Jul 23, 2022Updated 3 years ago
- Automated Recon Tool Installer☆15Jun 29, 2022Updated 3 years ago
- parse ffuf & map endpoints to wordlists☆21Feb 25, 2021Updated 4 years ago
- Passively check for XSS character encodings☆18Feb 7, 2026Updated last week
- Here I am trying to show you some cheat-sheet of nmap. Which may help you on penetration testing and bug hunting.☆20Dec 20, 2021Updated 4 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Mar 10, 2023Updated 2 years ago
- A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository☆19Sep 29, 2022Updated 3 years ago
- Test the speed and reliability of a list of DNS servers☆22Dec 9, 2020Updated 5 years ago
- A multi-threaded password sprayer based on Medusa, built for distributed spraying.☆37Oct 17, 2021Updated 4 years ago
- public dns server list for dmut project☆18Nov 30, 2023Updated 2 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆56Jun 13, 2023Updated 2 years ago
- Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services☆24Jan 21, 2021Updated 5 years ago
- Wordlists for Bug Bounty☆23Aug 18, 2019Updated 6 years ago
- ☆23Sep 19, 2024Updated last year
- Analyze an APK archive.☆28Feb 24, 2024Updated last year
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆26May 26, 2020Updated 5 years ago
- A Collection of Wordlists for Penetration Testing☆33Dec 13, 2025Updated 2 months ago
- Speed-up your hunting with google dorks🚀🚀☆21Sep 8, 2022Updated 3 years ago
- List of fresh and validated DNS resolvers updated every 12h.☆24Updated this week
- Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN☆27Sep 17, 2021Updated 4 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆25Feb 11, 2023Updated 3 years ago
- ☆26Sep 1, 2022Updated 3 years ago
- Enhanced 403 bypass header☆21Sep 12, 2022Updated 3 years ago
- A powerful subdomain enumeration tool that aggregates data from multiple sources to create comprehensive lists of root subdomains.☆43Dec 19, 2025Updated last month
- assets for www.hahwul.com☆24Updated this week
- ☆29May 22, 2024Updated last year
- Bug Bounty Platforms☆26Oct 17, 2024Updated last year
- Documentation for knoXSS tool by @brutelogic☆29Jan 24, 2017Updated 9 years ago
- ☆11Feb 28, 2022Updated 3 years ago
- Qui puoi trovare i comandi aggiornati per l'uso con Debian 11. Se hai acquistato il libro prima del 2022 probabilmente sei nel posto gius…☆14Jan 11, 2023Updated 3 years ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆35Nov 24, 2024Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆25Apr 19, 2023Updated 2 years ago
- ☆28Sep 10, 2022Updated 3 years ago
- ☆15Mar 21, 2025Updated 10 months ago
- Subdomain Recon Tool☆13Sep 11, 2022Updated 3 years ago
- Your subdomains are free for the taking - no API key, no mistaking! 🕺☆37Feb 27, 2023Updated 2 years ago