infosec-au / little-doctor
π₯π₯π₯ Out of the Browser into the Fire - Cross platform XSS worm framework π₯π₯π₯
β134Updated 8 years ago
Alternatives and similar repositories for little-doctor:
Users that are interested in little-doctor are comparing it to the libraries listed below
- "Repeater" style XSS post-exploitation tool for mass browser control. Primarily a PoC to show why HttpOnly flag isn't a complete protectiβ¦β135Updated 7 years ago
- A small python script to check for Cross-Site Tracing (XST)β136Updated 9 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policiesβ164Updated last year
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any languβ¦β157Updated 6 years ago
- Shodan HQ nmap plugin - passively scan targetsβ152Updated 8 years ago
- An automated XSS payload generator written in python.β319Updated 8 years ago
- β193Updated 6 years ago
- Proof-of-concept JavaScript malware implemented as a Proxy Auto-Configuration (PAC) Fileβ158Updated 8 years ago
- β53Updated 8 years ago
- A lightweight CSRF Toolkit for easy Proof of conceptβ174Updated 10 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!β383Updated 4 years ago
- Brosec - An interactive reference tool to help security professionals utilize useful payloads and commands.β355Updated 2 years ago
- proxy poc implementation of STARTTLS stripping attacksβ166Updated 3 years ago
- Analysis Suite For EAP Enabled Wireless Networksβ122Updated 5 years ago
- Fingerprints servers, finds exploits, scans WebDAV. May or may not also make coffee.β121Updated 5 years ago
- Tool for abusing XSS vulnerabilities on Wordpress and Joomla! installationsβ71Updated 8 years ago
- PoC for an adaptive parallelised DNS proberβ44Updated 7 years ago
- LNHG - Mass Web Fingerprinterβ61Updated 8 years ago
- Cartero - Social Engineering Frameworkβ171Updated 4 years ago
- β88Updated last week
- The Inspector tool is a privilege escalation helper (PoC), easy to deployed on web server, this tool can list process running with root, β¦β121Updated 6 years ago
- A webshell framework for penetration testers.β296Updated 9 months ago
- XSSYA (Cross Site Scripting Scanner & Vulnerability Confirmation)β95Updated 2 years ago
- Neet - Network Enumeration and Exploitation Toolβ167Updated 8 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & wβ¦β141Updated 7 years ago
- Automated digital reconnaissanceβ194Updated 2 years ago
- β92Updated 6 years ago
- Pentesters spend too much time during information gathering phase. Flashlight (Fener) provides services to scan network/ports and gather β¦β187Updated 5 years ago
- Web recon tool (find temporary files, parse robots.txt, search some folders, google dorks and search domains hosted on same server)β104Updated 8 years ago
- Subdomain Analyzerβ76Updated 7 years ago