kleiton0x00 / ppmapLinks
A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
☆511Updated 3 years ago
Alternatives and similar repositories for ppmap
Users that are interested in ppmap are comparing it to the libraries listed below
Sorting:
- Gotator is a tool to generate DNS wordlists through permutations.☆486Updated 3 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆452Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆317Updated last month
- HTTP Request Smuggling Detection Tool☆520Updated last year
- A fast and minimal JS endpoint extractor☆369Updated 9 months ago
- ☆297Updated 3 years ago
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆273Updated 2 weeks ago
- A tool to check a bunch of URLs that contain reflecting params.☆587Updated last year
- Automated learning of regexes for DNS discovery☆371Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆388Updated 3 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆633Updated 2 years ago
- Js File Scanner☆169Updated 3 years ago
- Smart context-based SSRF vulnerability scanner.☆355Updated 3 years ago
- Generate tens of thousands of subdomain combinations in a matter of seconds☆269Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆630Updated last month
- Burpsuite plugin for Interact.sh☆227Updated last year
- Customisable and automated HTTP header injection☆260Updated last year
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,003Updated 2 weeks ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆450Updated 3 years ago
- This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…☆522Updated 8 months ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆374Updated 5 years ago
- A Security Tool for Enumerating WebSockets☆360Updated 3 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆295Updated 11 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆72Updated last year
- Golang client for querying SecurityTrails API data☆566Updated last year
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆221Updated 11 months ago
- Takes a list of URLs and returns their HTTP response codes☆399Updated last year
- IIS shortname scanner written in Go☆340Updated 2 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆328Updated 2 months ago