kurobeats / fimapLinks
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
☆581Updated 3 years ago
Alternatives and similar repositories for fimap
Users that are interested in fimap are comparing it to the libraries listed below
Sorting:
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆562Updated 3 years ago
- Local file inclusion exploitation tool☆925Updated 4 months ago
- DotDotPwn - The Directory Traversal Fuzzer☆1,104Updated 3 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆559Updated 5 years ago
- ReverShellGenerator - A tool to generate various ways to do a reverse shell☆567Updated last year
- Default usernames and passwords for various systems (VoIP,IPMI,Oracle).☆438Updated last year
- Simple php reverse shell implemented using binary .☆435Updated 2 years ago
- Herramienta para evadir disable_functions y open_basedir☆487Updated 2 years ago
- Python 3.5+ DNS asynchronous brute force utility☆669Updated 2 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,283Updated 5 months ago
- Search for Directory Traversal Vulnerabilities☆457Updated last month
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆662Updated 7 years ago
- BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …☆560Updated 4 years ago
- Content discovery wordlists generated using BigQuery☆580Updated 5 years ago
- Drupal enumeration & exploitation tool☆616Updated 5 years ago
- Finds unknown classes of injection vulnerabilities☆708Updated 9 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,910Updated 3 years ago
- Exploitation for XSS☆730Updated 4 years ago
- Automated script for performing Padding Oracle attacks☆804Updated last year
- RSMangler will take a wordlist and perform various manipulations on it similar to those done by John the Ripper with a few extras.☆230Updated 6 years ago
- Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…☆575Updated last year
- A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom bin…☆650Updated 6 months ago
- A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…☆441Updated 4 years ago
- A unique automated LFi Exploiter with Bind/Reverse Shells☆298Updated 10 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆564Updated 2 years ago
- Some of the best web shells that you might need!☆348Updated 2 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆757Updated 2 years ago
- A script to enumerate virtual hosts on a server.☆690Updated 8 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆544Updated 7 years ago
- Easily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.☆1,284Updated 4 months ago