luisfontes19 / xxexploiter

Related projects ⓘ

Alternatives and complementary repositories for xxexploiter

• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆945Updated 2 years ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆738Updated last year
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆668Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆583Updated 3 weeks ago
• dwisiswant0 / findom-xss
  A fast DOM based XSS vulnerability scanner with simplicity.
  ☆767Updated 2 years ago
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆897Updated last year
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆413Updated 3 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆481Updated 10 months ago
• ghsec / webHunt
  Web App bug hunting
  ☆553Updated 4 months ago
• MindPatch / scant3r
  ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )
  ☆682Updated last year
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆608Updated 8 months ago
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆787Updated last year
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,679Updated 6 months ago
• hahwul / jwt-hack
  🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast c…
  ☆762Updated 5 months ago
• devanshbatham / OpenRedireX
  A fuzzer for detecting open redirect vulnerabilities
  ☆709Updated 4 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆803Updated 2 years ago
• r0075h3ll / Oralyzer
  Open Redirection Analyzer
  ☆752Updated last year
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆934Updated 4 months ago
• anshumanpattnaik / http-request-smuggling
  HTTP Request Smuggling Detection Tool
  ☆471Updated 10 months ago
• s0md3v / uro
  declutters url lists for crawling/pentesting
  ☆1,178Updated last week
• KathanP19 / Gxss
  A tool to check a bunch of URLs that contain reflecting params.
  ☆532Updated 3 months ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆528Updated 3 months ago
• kleiton0x00 / ppmap
  A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
  ☆493Updated 2 years ago
• projectdiscovery / chaos-client
  Go client to communicate with Chaos DB API.
  ☆639Updated this week
• AlephNullSK / dnsgen
  Generates combination of domain names from the provided input.
  ☆900Updated 4 months ago
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆614Updated 6 months ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,343Updated 2 years ago
• pikpikcu / XRCross
  XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…
  ☆329Updated last year
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆764Updated last year
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year