kh4sh3i / Apache-Tomcat-PentestingView external linksLinks
Apache Tomcat exploit and Pentesting guide for penetration tester
☆66Sep 2, 2022Updated 3 years ago
Alternatives and similar repositories for Apache-Tomcat-Pentesting
Users that are interested in Apache-Tomcat-Pentesting are comparing it to the libraries listed below
Sorting:
- Pentesting Apache Tomcat 101☆14Apr 4, 2023Updated 2 years ago
- Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testi…☆13Oct 23, 2021Updated 4 years ago
- Bcheck scripts for Burp☆28Aug 7, 2024Updated last year
- Reflected XSS Payload List for Vue.js (2 & 3)☆15Jan 12, 2023Updated 3 years ago
- GBounty Profiles are customizable security test definitions used by the GBounty web scanner to identify vulnerabilities in web applicatio…☆25Mar 11, 2025Updated 11 months ago
- A very simple AEM detector written in rust.🦀☆20Jun 27, 2023Updated 2 years ago
- Find unicode codepoints to use in normalisation and transformation attacks.☆11Mar 15, 2021Updated 4 years ago
- ☆11Jun 8, 2022Updated 3 years ago
- ☆14Jan 23, 2026Updated 3 weeks ago
- WP Juicer Tool for quick scanning of confidential information on WordPress endpoints.☆10Apr 30, 2024Updated last year
- ☆42Nov 19, 2025Updated 2 months ago
- .NET wrapper around LogonUserA to test creds☆12Jun 2, 2022Updated 3 years ago
- Burpsuite Extension for Jsmon☆22Feb 5, 2026Updated last week
- Socks proxy server using powershell. Supports local and reverse connections for pivoting.☆11Oct 7, 2020Updated 5 years ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Dec 13, 2025Updated 2 months ago
- ☆30Jan 16, 2026Updated 3 weeks ago
- ☆11Apr 8, 2024Updated last year
- Pentester plugin for Oh-My-Zsh. Boosting efficiency & and saving time with common initial tasks for pentesting☆17Jan 23, 2025Updated last year
- This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…☆12Apr 22, 2024Updated last year
- burpsuite extension to analyze javascript files using semgrep☆12Feb 3, 2025Updated last year
- Here we are gather all Nuclei Templates that are Publically available.☆15Apr 28, 2024Updated last year
- Automated phishing catcher☆12Nov 27, 2025Updated 2 months ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆888Jan 12, 2026Updated last month
- External NSE script library (Collection of unofficial scripts) - Feel free to submit your NSE scripts!☆33Jan 5, 2022Updated 4 years ago
- ☆18Updated this week
- Perform With Massive Wordpress Enumeration☆12Aug 18, 2023Updated 2 years ago
- Wordpress 5.8.2 CVE-2022-21661 Vuln enviroment POC exploit☆14May 28, 2022Updated 3 years ago
- BetterBugBounty - Here tools are classic, bugs are hunted, and nostalgia is the ultimate weapon!☆29Feb 10, 2024Updated 2 years ago
- My gfPatterns☆15Aug 31, 2021Updated 4 years ago
- Burp extension to increment a parameter in each active scan request☆12Jul 16, 2025Updated 6 months ago
- All about subdomain enumeration☆16Feb 5, 2019Updated 7 years ago
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Jun 3, 2024Updated last year
- These are just some script which you can use to detect and exploit the Apache Struts Vulnerability (CVE-2017-5638)☆16Mar 12, 2017Updated 8 years ago
- [CVE-2024-4956] Nexus Repository Manager 3 Unauthenticated Path Traversal Bulk Scanner☆17Sep 26, 2024Updated last year
- HuntersEye is designed for Bug Bounty Hunters, and Security Researchers to monitor new subdomains and certificates for specified domains.…☆21Dec 29, 2023Updated 2 years ago
- ☆35Oct 1, 2025Updated 4 months ago
- RobinHood - Bug Hunting Recon Automation Script☆37Nov 18, 2022Updated 3 years ago
- smartrecon is a powerful shell script to automate the recon and finding common vulnerabilities for bug hunter☆157Apr 3, 2024Updated last year
- Passively check for XSS character encodings☆18Feb 7, 2026Updated last week