joshkar / X-ReconLinks
A utility for detecting webpage inputs and conducting XSS scans.
☆160Updated last year
Alternatives and similar repositories for X-Recon
Users that are interested in X-Recon are comparing it to the libraries listed below
Sorting:
- Automated OSINT on SwaggerHub☆244Updated 2 years ago
- functions to exploit common web application vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Server-Side Request Forger…☆92Updated last year
- Payload for bug bounty☆98Updated last year
- ☆184Updated last year
- an exploit of Server-side request forgery (SSRF)☆51Updated last year
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆77Updated last year
- A Python tool to resolve domains to IPs, fetch related CVEs, and display open ports☆15Updated 2 months ago
- It is a tool for scanning and exploiting the famous SQL injection vulnerability in more than millions of sites. The exploit was programme…☆67Updated last year
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆100Updated last year
- ZeusLeak is a browser extension that automatically detects leaked secrets and credentials in code while browsing.☆45Updated 11 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆124Updated last year
- Security testing tool for analyzing HTTP 403 responses and identifying access control misconfigurations in web applications.☆166Updated last month
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆102Updated 11 months ago
- A tool for extract Endpoints, URLs and Secrets from contents☆68Updated last week
- A fast subdomain takeover tool☆85Updated 2 years ago
- ☆124Updated 5 months ago
- Collect XSS vulnerable parameters from entire domain.☆155Updated 3 years ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆163Updated last year
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆164Updated 8 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆75Updated last month
- ☆65Updated 2 years ago
- AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extrac…☆133Updated last year
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆63Updated 11 months ago
- 「💉」XSS Payload List☆43Updated 2 years ago
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆87Updated last month
- This is a useful Python script for extracting bug bounty or any other write-ups from every RSS.☆142Updated 2 months ago
- simple recon tool to help you for searching vulnerability on web server☆75Updated last month
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆30Updated last year
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆91Updated last year
- Automatic tool to find Google Dorks☆36Updated last year