kleiton0x00 / ppmapLinks
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
☆512Updated 3 years ago
Alternatives and similar repositories for ppmap
Users that are interested in ppmap are comparing it to the libraries listed below
Sorting:
- Gotator is a tool to generate DNS wordlists through permutations.☆496Updated 3 years ago
- HTTP Request Smuggling Detection Tool☆527Updated last year
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆321Updated 3 months ago
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆279Updated 2 months ago
- ☆296Updated 3 years ago
- A fast and minimal JS endpoint extractor☆380Updated 11 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆397Updated 3 years ago
- Automated learning of regexes for DNS discovery☆372Updated 2 years ago
- Burpsuite plugin for Interact.sh☆227Updated last year
- Customisable and automated HTTP header injection☆266Updated last year
- A tool to check a bunch of URLs that contain reflecting params.☆595Updated last year
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆296Updated last year
- Generate tens of thousands of subdomain combinations in a matter of seconds☆272Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,015Updated 2 months ago
- Golang client for querying SecurityTrails API data☆573Updated 2 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆644Updated last month
- Js File Scanner☆169Updated 3 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆381Updated 5 years ago
- Smart context-based SSRF vulnerability scanner.☆357Updated 3 years ago
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆634Updated 3 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆452Updated 3 years ago
- Takes a list of URLs and returns their HTTP response codes☆399Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆808Updated 3 months ago
- A Security Tool for Enumerating WebSockets☆362Updated 3 years ago
- Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools☆279Updated last year
- IIS shortname scanner written in Go☆344Updated 2 years ago
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆264Updated last month
- This a adaption of tomnomnom's kxss tool with a different output format☆501Updated 2 years ago