johnsaigle / scary-strings
Collection of wordlists containing dangerous function calls in many languages
☆26Updated 3 weeks ago
Alternatives and similar repositories for scary-strings:
Users that are interested in scary-strings are comparing it to the libraries listed below
- Application for logging HTTP and DNS Requests☆14Updated 3 years ago
- Extract endpoints from specific Git repository for fuzzing☆22Updated 4 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 3 years ago
- ☆9Updated 3 years ago
- Tool to extract & validate google fcm server keys from apks☆28Updated 4 years ago
- Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)☆20Updated 3 years ago
- Get all the CNs from a list of domains☆46Updated 3 years ago
- Return domains in CSP headers in http response☆15Updated 3 years ago
- gSAST - Grep Static Analysis Security Tool☆11Updated last year
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆27Updated 4 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆14Updated 4 years ago
- Simple tools to handle string and generate subdomain permutations☆15Updated 2 years ago
- ☆48Updated 4 years ago
- Automate the process of an S3 bucket subdomain takeover via dangling CNAME record☆24Updated 10 months ago
- My fuzz repo!☆22Updated last year
- A tools for JavaScript Recon☆21Updated 4 years ago
- Tool to find stored robots.txt files from the past☆17Updated last year
- A BurpSuite plugin for BBRF☆24Updated 4 months ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Updated 3 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 3 years ago
- RegexFinder - Burp Suite extension to passively scan responses for occurrence of regular expression patterns.☆22Updated 4 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated 9 months ago
- Related subdomains finder☆29Updated 2 years ago
- Security test tool for Blind XSS☆26Updated 5 years ago
- S3 bucket enumerator☆29Updated 5 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆18Updated 4 years ago
- Finds Documents On Cloud Assets Using grayhatwarfare API for short urls☆18Updated 3 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Updated 3 years ago