kleiton0x00 / ppmapLinks
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
☆508Updated 2 years ago
Alternatives and similar repositories for ppmap
Users that are interested in ppmap are comparing it to the libraries listed below
Sorting:
- Gotator is a tool to generate DNS wordlists through permutations.☆478Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆577Updated 9 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆312Updated 6 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆976Updated last month
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- Nuclei templates written by us.☆271Updated 3 years ago
- HTTP Request Smuggling Detection Tool☆507Updated last year
- ☆294Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆775Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆624Updated 6 months ago
- This a adaption of tomnomnom's kxss tool with a different output format☆473Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆69Updated last year
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆364Updated 4 years ago
- A fuzzer for detecting open redirect vulnerabilities☆752Updated 11 months ago
- A fast and minimal JS endpoint extractor☆353Updated 6 months ago
- Finding XSS during recon☆260Updated 2 years ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆818Updated 2 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆311Updated last week
- This is go CLI tool for send fast Multiple get HTTP request.☆274Updated 2 years ago
- Automated learning of regexes for DNS discovery☆368Updated 2 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆248Updated 9 months ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆618Updated 2 years ago
- IIS shortname scanner written in Go☆333Updated 2 years ago
- Golang client for querying SecurityTrails API data☆559Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆872Updated 3 years ago
- Js File Scanner☆169Updated 3 years ago
- Smart context-based SSRF vulnerability scanner.☆351Updated 3 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆511Updated 2 months ago
- Burp extension to create target specific and tailored wordlist from burp history.☆239Updated 3 years ago
- Takes a list of URLs and returns their HTTP response codes☆395Updated last year