kurobeats / fimapLinks
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
☆578Updated 3 years ago
Alternatives and similar repositories for fimap
Users that are interested in fimap are comparing it to the libraries listed below
Sorting:
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆562Updated 3 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆553Updated 5 years ago
- DotDotPwn - The Directory Traversal Fuzzer☆1,103Updated 3 years ago
- Local file inclusion exploitation tool☆917Updated 3 months ago
- ReverShellGenerator - A tool to generate various ways to do a reverse shell☆567Updated last year
- Default usernames and passwords for various systems (VoIP,IPMI,Oracle).☆439Updated last year
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,280Updated 5 months ago
- Simple php reverse shell implemented using binary .☆433Updated 2 years ago
- Automated script for performing Padding Oracle attacks☆801Updated last year
- RSMangler will take a wordlist and perform various manipulations on it similar to those done by John the Ripper with a few extras.☆230Updated 6 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆562Updated 2 years ago
- Python 3.5+ DNS asynchronous brute force utility☆670Updated 2 years ago
- Drupal enumeration & exploitation tool☆616Updated 5 years ago
- Herramienta para evadir disable_functions y open_basedir☆487Updated 2 years ago
- Search for Directory Traversal Vulnerabilities☆457Updated 2 weeks ago
- Some of the best web shells that you might need!☆348Updated 2 years ago
- Content discovery wordlists generated using BigQuery☆578Updated 5 years ago
- BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …☆559Updated 4 years ago
- Multi Tool Subdomain Enumeration☆724Updated 4 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆661Updated 6 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,903Updated 3 years ago
- Exploitation for XSS☆729Updated 4 years ago
- Finds unknown classes of injection vulnerabilities☆706Updated 8 months ago
- A script to enumerate virtual hosts on a server.☆689Updated 8 years ago
- A unique automated LFi Exploiter with Bind/Reverse Shells☆296Updated 10 years ago
- Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…☆573Updated last year
- A standalone python script which utilizes python's built-in modules to enumerate SUID binaries, separate default binaries from custom bin…☆647Updated 5 months ago
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆405Updated this week
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆543Updated 7 years ago
- A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…☆441Updated 4 years ago