Search for Directory Traversal Vulnerabilities
☆462Jan 11, 2026Updated 4 months ago
Alternatives and similar repositories for dotdotslash
Users that are interested in dotdotslash are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool that checks for path traversal traces in a given web application url, plus it is capable of multi-threading, set timeout and 5-layer…☆46Jul 13, 2018Updated 7 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆52Sep 19, 2018Updated 7 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,941Apr 13, 2022Updated 4 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆273Mar 24, 2021Updated 5 years ago
- Easy way to brute-force web directory.☆164Jun 2, 2019Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This tool can be used to brute discover GET and POST parameters☆1,396Aug 24, 2019Updated 6 years ago
- ☆63Mar 21, 2018Updated 8 years ago
- Phishing on Twitter☆254Jun 21, 2018Updated 7 years ago
- Extract subdomains from SSL certificates in HTTPS sites.☆390Mar 3, 2025Updated last year
- A tool that can help detect and takeover subdomains with dead DNS records☆12Aug 23, 2018Updated 7 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆572Aug 17, 2020Updated 5 years ago
- MSDAT: Microsoft SQL Database Attacking Tool☆995Aug 1, 2023Updated 2 years ago
- Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors…☆1,300Dec 23, 2018Updated 7 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆305Oct 14, 2018Updated 7 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Script to steal passwords from ssh.☆489Dec 19, 2018Updated 7 years ago
- Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.☆140Sep 23, 2024Updated last year
- A Powerful Subdomain Takeover Tool☆966Oct 17, 2023Updated 2 years ago
- ☆66Feb 10, 2018Updated 8 years ago
- Drupal enumeration & exploitation tool☆616Nov 4, 2020Updated 5 years ago
- A testing framework for mail security and filtering solutions.☆245Jul 24, 2023Updated 2 years ago
- Basics of Windows privilege escalation☆134Sep 30, 2017Updated 8 years ago
- Windows passwords decryption from dump files☆515Feb 2, 2023Updated 3 years ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆324Feb 7, 2018Updated 8 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Kerberos / Windows AD / Linux PAM password change check against breached lists (HIBP), and other rules☆161Feb 2, 2023Updated 3 years ago
- Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.☆944May 8, 2019Updated 7 years ago
- Scan for misconfigured S3 buckets across S3-compatible APIs!☆3,077Apr 25, 2026Updated 3 weeks ago
- Hawkeye filesystem analysis tool☆242Jul 21, 2018Updated 7 years ago
- Find exploits in local and online databases instantly☆1,821Sep 27, 2021Updated 4 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆400May 20, 2020Updated 6 years ago
- Extreme Vulnerable Node Application☆95Nov 12, 2018Updated 7 years ago
- Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…☆159May 1, 2024Updated 2 years ago
- Penetration testing and auditing toolkit for Android apps.☆249Mar 8, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,279Jan 8, 2026Updated 4 months ago
- Meterpreter Paranoid Mode - SSL/TLS connections☆290May 14, 2019Updated 7 years ago
- AV Bypass☆29Jan 12, 2018Updated 8 years ago
- Vulnerability scanner based on vulners.com search API☆891Oct 1, 2025Updated 7 months ago
- Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment☆1,191Oct 24, 2018Updated 7 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆265Nov 18, 2021Updated 4 years ago
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆638Jul 16, 2023Updated 2 years ago