jcesarstef / dotdotslash
Search for Directory Traversal Vulnerabilities
☆417Updated 4 months ago
Related projects ⓘ
Alternatives and complementary repositories for dotdotslash
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆530Updated 2 years ago
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆516Updated 2 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆514Updated 4 years ago
- Multi Tool Subdomain Enumeration☆721Updated 3 years ago
- JShell - Get a JavaScript shell with XSS.☆509Updated 5 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆465Updated 4 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆423Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆253Updated 4 months ago
- ☆318Updated 6 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Updated 5 years ago
- Finds unknown classes of injection vulnerabilities☆636Updated last year
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆329Updated 3 years ago
- A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…☆429Updated 3 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆346Updated 6 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆394Updated 4 years ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆449Updated 9 months ago
- ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.☆738Updated last year
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆353Updated last year
- HTTP file upload scanner for Burp Proxy☆481Updated 10 months ago
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...☆226Updated 4 years ago
- Apache Tomcat auto WAR deployment & pwning penetration testing tool.☆412Updated 7 months ago
- ☆787Updated 11 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,198Updated 10 months ago
- A small tool that extracts relative URLs from a file.☆730Updated 4 years ago
- Python 3.5+ DNS asynchronous brute force utility☆644Updated last year
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆511Updated last year
- A tiny and cute URL fuzzer☆387Updated last year
- A Powerful Subdomain Takeover Tool☆930Updated last year
- ☆271Updated 2 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆708Updated 5 years ago