kazet/wpgarlic

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kazet/wpgarlic)

kazet / wpgarlic

A proof-of-concept WordPress plugin fuzzer

☆196

Alternatives and similar repositories for wpgarlic

Users that are interested in wpgarlic are comparing it to the libraries listed below

Sorting:

allyomalley / BurpParamFlagger
View on GitHub
A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
☆132Feb 19, 2021Updated 5 years ago
hahwul / authz0
View on GitHub
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
☆427Feb 20, 2026Updated 2 weeks ago
wfinn / redirex
View on GitHub
tool that generates bypasses for open redirects
☆51Apr 18, 2022Updated 3 years ago
adarshshetty18 / fcm_server_key
View on GitHub
Tool to extract & validate google fcm server keys from apks
☆29Jan 20, 2021Updated 5 years ago
pelaohxc / postMessageFinder
View on GitHub
☆36Jul 15, 2020Updated 5 years ago
Cgboal / exclude-cdn
View on GitHub
Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin
☆45Mar 13, 2023Updated 2 years ago
volkandindar / agartha
View on GitHub
A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…
☆395Feb 18, 2026Updated 2 weeks ago
justmorpheus / burp-automation
View on GitHub
Performing automated scan using Burp Suite Pro & Vmware Burp Rest API
☆52Sep 30, 2022Updated 3 years ago
SAPT01 / HBSQLI
View on GitHub
Automated Tool for Testing Header Based Blind SQL Injection
☆323Jul 23, 2023Updated 2 years ago
ARPSyndicate / kenzer
View on GitHub
automated web assets enumeration & scanning [DEPRECATED]
☆288Mar 7, 2023Updated 2 years ago
KINGSABRI / jwtear
View on GitHub
Modular command-line tool to parse, create and manipulate JWT tokens for hackers
☆104Mar 17, 2023Updated 2 years ago
ffx64 / wprecon
View on GitHub
WRecon, is a tool for the recognition of vulnerabilities and blackbox information for wordpress.
☆19Nov 30, 2022Updated 3 years ago
Th0h0 / autopoisoner
View on GitHub
Web cache poisoning vulnerability scanner.
☆73May 5, 2022Updated 3 years ago
therealunicornsecurity / tricard
View on GitHub
Tricard - Malware Sandbox Fingerprinting
☆23Dec 11, 2023Updated 2 years ago
pixelbubble / DomainAlerting
View on GitHub
Daily alert when a new domain name is registered and contains your keywords
☆119Oct 23, 2023Updated 2 years ago
minamo7sen / burp-JS-Miner
View on GitHub
This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
☆57May 30, 2023Updated 2 years ago
cyberaz0r / Burp-IISTildeEnumerationScanner
View on GitHub
Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
☆61Jun 12, 2023Updated 2 years ago
Lexxrt / vShell
View on GitHub
🐚ᴠʟᴀɴɢ ʀᴇᴠᴇʀsᴇ sʜᴇʟʟ🐚
☆11Apr 28, 2022Updated 3 years ago
denniskniep / interactsh_deploy
View on GitHub
Interactsh deployment to AWS EC2 Instance with Terraform
☆11Dec 29, 2021Updated 4 years ago
BishopFox / local-llm-ctf
View on GitHub
A small go harness that uses Ollama to orchestrate LLMs in a restricted process flow
☆16Sep 10, 2024Updated last year
CyberSecurityUP / ImgPayload
View on GitHub
Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …
☆25Jun 11, 2025Updated 8 months ago
ahmetak4n / radar
View on GitHub
Scanner for misconfigured DevSecOps or Security tools on internet like SonarQube, GoPhish etc.
☆12Apr 4, 2025Updated 11 months ago
xoreaxecx / PEmimic
View on GitHub
A PE morphing tool that allows you to mimic one executable file to another.
☆11Dec 6, 2023Updated 2 years ago
scheatkode / presshell
View on GitHub
🚪 Quick & dirty Wordpress Command Execution Shell
☆66Jan 24, 2022Updated 4 years ago
trickest / dsieve
View on GitHub
Filter and enrich a list of subdomains by level
☆210Sep 25, 2023Updated 2 years ago
akabe1 / OAUTHScan
View on GitHub
Burp Suite Extension useful to verify OAUTHv2 and OpenID security
☆175Oct 26, 2024Updated last year
dwisiswant0 / look4jar
View on GitHub
Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?
☆45Mar 2, 2022Updated 4 years ago
thelikes / gwdomains
View on GitHub
sub domain wild card filtering tool
☆40Apr 18, 2020Updated 5 years ago
0xsha / ProxyFor
View on GitHub
Validate proxies for specific domain
☆38Aug 14, 2021Updated 4 years ago
dwisiswant0 / secpat2gf
View on GitHub
convert secret patterns to gf compatible.
☆38Feb 11, 2023Updated 3 years ago
BitTheByte / Monitorizer
View on GitHub
Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
☆287Jul 13, 2024Updated last year
synopsys-sig / ATOR-Burp
View on GitHub
☆88Apr 24, 2024Updated last year
random-robbie / grayhatwarfare-docs-finder
View on GitHub
Finds Documents On Cloud Assets Using grayhatwarfare API for short urls
☆23Mar 2, 2022Updated 4 years ago
pry0cc / gorgo
View on GitHub
A multi-threaded password sprayer based on Medusa, built for distributed spraying.
☆36Oct 17, 2021Updated 4 years ago
Immersive-Labs-Sec / CVE-2021-32648
View on GitHub
Proof Of Concept code for OctoberCMS Auth Bypass CVE-2021-32648
☆12Jan 14, 2022Updated 4 years ago
tehmoon / http-fuzzer
View on GitHub
☆12Apr 21, 2020Updated 5 years ago
ignis-sec / puff
View on GitHub
Clientside vulnerability / reflected xss fuzzer
☆149Jul 29, 2023Updated 2 years ago
brevityinmotion / goodfaith
View on GitHub
Stay within program scope
☆37Aug 17, 2022Updated 3 years ago
Impact-I / x8-Burp
View on GitHub
Hidden parameters discovery suite
☆224Nov 14, 2022Updated 3 years ago