johnsaigle / scary-strings
Collection of wordlists containing dangerous function calls in many languages
☆22Updated 2 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for scary-strings
- Tool for making it easy to collect dns results from the CLI☆39Updated 2 months ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆17Updated 2 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated 4 months ago
- Tool to extract & validate google fcm server keys from apks☆27Updated 3 years ago
- A BurpSuite plugin for BBRF☆24Updated 2 years ago
- Return domains in CSP headers in http response☆15Updated 3 years ago
- Tool to find stored robots.txt files from the past☆16Updated last year
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 3 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆39Updated last year
- Related subdomains finder☆29Updated 2 years ago
- A set of tools, procedures, and playbooks for performing bug bounties☆15Updated 5 years ago
- Extract endpoints from specific Git repository for fuzzing☆21Updated 4 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆28Updated 3 years ago
- Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)☆20Updated 3 years ago
- Ffuf output browser☆37Updated last year
- ☆9Updated 3 years ago
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆35Updated last year
- My fuzz repo!☆22Updated last year
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Updated 3 years ago
- Application for logging HTTP and DNS Requests☆14Updated 3 years ago
- A collection of scripts for bug-bounty related stuff☆38Updated 4 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Updated 3 years ago
- Query various sources for CVE proof-of-concepts☆49Updated last year
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated last year
- Multithreaded Host Header Redirection Scanner☆12Updated 4 years ago
- Get URLs from the Wayback Machine. Able to handle large outputs.☆22Updated last year