imperva / automatic-api-attack-tool

Related projects: ⓘ

• PortSwigger / http-request-smuggler
  ☆950Updated 9 months ago
• yassineaboukir / sublert
  Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
  ☆986Updated 3 years ago
• RhinoSecurityLabs / IPRotate_Burp_Extension
  Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.
  ☆807Updated 4 months ago
• vmware / burp-rest-api
  REST/JSON API to the Burp Suite security tool.
  ☆546Updated 3 months ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆305Updated 2 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆351Updated 2 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆601Updated 6 months ago
• BishopFox / smogcloud
  Find cloud assets that no one wants exposed 🔎 ☁️
  ☆330Updated 4 years ago
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆621Updated this week
• fcavallarin / domdig
  DOM XSS scanner for Single Page Applications
  ☆394Updated 2 months ago
• 0xsha / CloudBrute
  Awesome cloud enumerator
  ☆855Updated last month
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆319Updated 2 years ago
• epi052 / recon-pipeline
  An automated target reconnaissance pipeline.
  ☆424Updated last year
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆839Updated 2 years ago
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆411Updated 3 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆515Updated 6 years ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆635Updated 5 years ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆310Updated 5 months ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆919Updated 11 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆735Updated last year
• antichown / subdomain-takeover
  Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94
  ☆346Updated last year
• mhmdiaa / second-order
  Second-order subdomain takeover scanner
  ☆374Updated last year
• koenrh / s3enum
  Fast and stealthy Amazon S3 bucket enumeration tool for pentesters.
  ☆215Updated 3 months ago
• Fuzzapi / API-fuzzer
  API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
  ☆384Updated 7 years ago
• RhinoSecurityLabs / GCPBucketBrute
  A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.
  ☆476Updated last year
• assetnote / commonspeak2
  Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists
  ☆686Updated last year
• blabla1337 / skf-labs
  Repo for all the OWASP-SKF Docker lab examples
  ☆431Updated last month
• Accenture / jenkins-attack-framework
  ☆554Updated 3 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆663Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆394Updated last year