l4yton / RegHex
A collection of regexes for every possbile use
☆390Updated 9 months ago
Related projects: ⓘ
- list of regex patterns for oauth / api tokens with provided source☆228Updated 3 weeks ago
- Client Side Prototype Pollution Scanner☆507Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆351Updated 2 years ago
- Open Redirection Analyzer☆732Updated last year
- Generates combination of domain names from the provided input.☆887Updated 2 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆772Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆735Updated last year
- A cheatsheet for exploiting server-side SVG processors.☆672Updated 4 years ago
- bash script for Subdomain Enumeration☆302Updated 11 months ago
- ☆647Updated 2 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆526Updated last month
- The most exhaustive list of reliable DNS resolvers.☆662Updated this week
- a javascript change monitoring tool for bugbounties☆581Updated last month
- A fuzzer for detecting open redirect vulnerabilities☆691Updated 2 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆524Updated 9 months ago
- Automation for javascript recon in bug bounty.☆886Updated last year
- Scrape domain names from SSL certificates of arbitrary hosts☆596Updated 5 months ago
- ☆363Updated 2 years ago
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.☆640Updated 8 months ago
- Security Testing Scripts for JWT☆305Updated 2 years ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆771Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆608Updated 5 months ago
- Takes a list of URLs and returns their HTTP response codes☆386Updated 11 months ago
- The Serverless Blind XSS App☆328Updated 5 months ago
- Subdomain takeover vulnerability checker☆977Updated last week
- ☆365Updated 3 years ago
- Tool for catching and logging different types of requests.☆217Updated 3 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆687Updated last month
- Web App bug hunting☆549Updated 3 months ago
- Heuristic Vulnerable Parameter Scanner☆562Updated 8 months ago