humblelad / Awesome-XSS-Payloads
Exotic and uncommon XSS Vectors to hit the target as quickly as possible.
☆16Updated 4 years ago
Related projects: ⓘ
- Host Header Injection Scanner☆44Updated 3 years ago
- Collection of content discovery wordlists in one wordlist.☆37Updated 2 years ago
- Related subdomains finder☆29Updated 2 years ago
- Get URLs from the Wayback Machine. Able to handle large outputs.☆23Updated last year
- Web application recon for bug bounty☆20Updated 4 years ago
- Toggle Burp proxy from anywhere and get its status in i3wm☆21Updated 2 weeks ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆53Updated 2 years ago
- Simultaneously execute various subdomain enumeration tools and aggregate results.☆38Updated 3 months ago
- ☆24Updated this week
- A Tool to find subdomains from hackerone reports.☆16Updated 3 years ago
- Information-Gathering Shell Script☆28Updated 3 years ago
- CLI tool that extracts a regex pattern from a list of urls ( Rust )☆56Updated 2 years ago
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆43Updated 2 years ago
- Custom scripts for directory fuzzing, subdomain enumeration, and more.☆43Updated 2 years ago
- Tool for making it easy to collect dns results from the CLI☆39Updated last month
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Python script implementing the favicon hash trick to find subdomains.☆26Updated last year
- WebApp intentionally made vulnerable to Race Condition for practicing Race Condition☆22Updated 2 years ago
- A simple tool which makes creating nuclei templates even easier.☆35Updated 2 months ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆28Updated 3 years ago
- ☆21Updated 6 years ago
- Passive subdomain enumeration tool with http-probe.☆33Updated 3 years ago
- ☆30Updated this week
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆55Updated last year
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆27Updated 2 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆55Updated 4 years ago
- WebSocket Connection Smuggler☆45Updated last year
- Small snippets and scripts which I use☆33Updated 4 years ago
- Advanced Recon Tool☆26Updated 4 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 3 years ago