kh4sh3i / xmlrpc-exploit

Related projects ⓘ

Alternatives and complementary repositories for xmlrpc-exploit

• aniqfakhrul / lazyParam
  A simple automation tool to detect lfi, rce and ssti vulnerability
  ☆55Updated 2 years ago
• bm402 / apidor
  A tool that automates the search for IDOR vulnerabilities in web apps and APIs
  ☆50Updated 3 years ago
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆52Updated 2 weeks ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆68Updated 10 months ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆31Updated 7 months ago
• carlospolop / Gorks
  ☆64Updated last year
• carlospolop / Pastos
  ☆47Updated 2 years ago
• suvendu-dash / misconfig-s3-bucket
  ☆18Updated last year
• e1abrador / Burp-Encode-IP
  Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.
  ☆42Updated 8 months ago
• whalebone7 / FfufMaster
  Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.
  ☆23Updated last year
• cold-try / Gank-RECON
  Subdomains enumeration, various scans and testing of some vulnerabilities.
  ☆75Updated 5 months ago
• abdallaabdalrhman / Wordlist-for-Bug-Bounty
  I collected it to help the bug hunter get a reward
  ☆55Updated 2 years ago
• projectmonke / shortnameguesser
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆34Updated last year
• System00-Security / findbbprograms
  Check if domain has bug bounty program or not
  ☆29Updated last year
• securebinary / o365sprayer
  An offensive security tool used to enumerate and spray passwords for O365 accounts on both Managed and Federated AD services.
  ☆47Updated last year
• HernanRodriguez1 / ScanMySQLiErrorBased-Nuclei
  ☆21Updated 2 years ago
• MantisSTS / GoCloud
  Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare
  ☆57Updated last year
• R0X4R / Parshu
  Filter URLs to save your time.
  ☆59Updated 2 years ago
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated last year
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• Nishantbhagat57 / backup-gen
  Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…
  ☆35Updated last week
• HernanRodriguez1 / ScanReflectedXSS
  ☆43Updated last year
• mathis2001 / ParamFirstCheck
  ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …
  ☆31Updated 11 months ago
• carlospolop / Leakos
  ☆68Updated 6 months ago
• adamjsturge / easy-xsshunter-express
  The fastest way to setup XSSHunter. It has options for the official and Discord/Slack Forks
  ☆40Updated 8 months ago
• Micro0x00 / CRTER
  This script reads a text file containing domains, fetches the subdomains from crt.sh
  ☆10Updated last year
• 0xPugal / knoxsser
  A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API
  ☆58Updated last month
• emadshanab / Oneliner-Bug-Bounty-Collection
  Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters
  ☆27Updated 11 months ago
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated last year
• adamjsturge / xsshunter-express
  Archived Please go to https://github.com/adamjsturge/xsshunter-go
  ☆31Updated 8 months ago