Alternatives and similar repositories for drupwn

Users that are interested in drupwn are comparing it to the libraries listed below

• dreadlocked / Drupalgeddon2
  Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)
  ☆587Updated 4 years ago
• SamJoan / droopescan
  A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.
  ☆1,332Updated last year
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆539Updated 2 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆536Updated 4 years ago
• JohnTroony / Blisqy
  Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
  ☆388Updated 6 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆549Updated 2 years ago
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆362Updated 2 years ago
• mazen160 / server-status_PWN
  A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…
  ☆436Updated 3 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆407Updated 2 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆725Updated 4 years ago
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆549Updated 2 years ago
• jcesarstef / dotdotslash
  Search for Directory Traversal Vulnerabilities
  ☆442Updated 11 months ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆425Updated 5 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆274Updated 4 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆533Updated 6 years ago
• anantshri / svn-extractor
  simple script to extract all web resources by means of .SVN folder exposed over network.
  ☆466Updated last year
• s0md3v / JShell
  JShell - Get a JavaScript shell with XSS.
  ☆525Updated 6 years ago
• vysecurity / DomLink
  A tool to link a domain with registered organisation names and emails, to other domains.
  ☆843Updated last year
• xsscx / Commodity-Injection-Signatures
  Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
  ☆401Updated last month
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆570Updated 5 years ago
• milo2012 / pathbrute
  Pathbrute
  ☆456Updated 5 years ago
• jobertabma / virtual-host-discovery
  A script to enumerate virtual hosts on a server.
  ☆690Updated 7 years ago
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆331Updated 4 years ago
• wish-i-was / femida
  Automated blind-xss search for Burp Suite
  ☆285Updated 5 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆299Updated 4 years ago
• mandatoryprogrammer / xsshunter_client
  Correlated injection proxy tool for XSS Hunter
  ☆256Updated 2 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆348Updated 3 years ago
• nettitude / xss_payloads
  Exploitation for XSS
  ☆717Updated 3 years ago
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆865Updated last year
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆355Updated 2 months ago