jhaddix / mywebappscriptsLinks
A collection of all the lists, scripts and techniques I use while doing web application penetration tests.
☆27Updated 9 years ago
Alternatives and similar repositories for mywebappscripts
Users that are interested in mywebappscripts are comparing it to the libraries listed below
Sorting:
- Usefull stuff from around teh internetz☆111Updated 7 years ago
- Ease-of-use extension for Web Application penetration testing☆23Updated 8 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bucrowd LevelUp 2017 virtua…☆24Updated 8 years ago
- A high-performance DNS stub resolver for bulk lookups☆22Updated 8 years ago
- Tools of "The Bug Hunters Methodology V2 by @jhaddix"☆199Updated 8 years ago
- ☆13Updated 8 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆18Updated 8 years ago
- See the history of a file from above☆15Updated 8 years ago
- Chrome Extension for XSS Hunter Payloads☆14Updated 8 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆308Updated 6 years ago
- Hello and welcome to my GitHub account. If you'd like to know more about me, this is likely the best place to start☆16Updated 7 years ago
- ☆276Updated 3 years ago
- This tool is for automate the initial things that we usually do in daily pentesting. So you can focus more on the main target.☆76Updated 5 years ago
- Combines the speed of masscan with the reliability and detailed enumeration of nmap☆16Updated 8 years ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.☆164Updated 5 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆134Updated 2 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆258Updated 4 years ago
- ☆244Updated 7 years ago
- stuff i'm willing to share with the world lol☆170Updated 2 years ago
- The OWASP Vulnerable Web Applications Directory Project (VWAD) is a comprehensive and well maintained registry of all known vulnerable we…☆14Updated 7 years ago
- The Bug Bounty Wiki☆172Updated 6 years ago
- PwnWiki - The notes section of the pentesters mind.☆26Updated 11 years ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆213Updated 5 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids.☆31Updated 7 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆158Updated 5 years ago
- Taktiksel Bug Hunting Yöntemleri☆45Updated 8 years ago
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆41Updated 7 years ago
- Note: Going through a full re-write of the tooling so the current versions in the repo do not work!☆411Updated 5 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…☆101Updated 2 years ago