mandatoryprogrammer / xsshunter

Related projects ⓘ

Alternatives and complementary repositories for xsshunter

• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• bugcrowd / HUNT
  ☆2,183Updated 11 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,911Updated last year
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,906Updated 3 weeks ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆923Updated 4 years ago
• nahamsec / lazyrecon
  This script is intended to automate your reconnaissance process in an organized fashion
  ☆1,924Updated 3 years ago
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,699Updated 2 years ago
• PortSwigger / param-miner
  ☆1,245Updated last week
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,352Updated last month
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,819Updated 10 months ago
• nahamsec / JSParser
  ☆788Updated last year
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,201Updated 11 months ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆931Updated last year
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• tomnomnom / meg
  Fetch many paths for many hosts - without killing the hosts
  ☆1,607Updated 9 months ago
• maK- / parameth
  This tool can be used to brute discover GET and POST parameters
  ☆1,344Updated 5 years ago
• hakluke / weaponised-XSS-payloads
  XSS payloads designed to turn alert(1) into P1
  ☆1,341Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago
• nahamsec / bbht
  A script to set up a quick Ubuntu 17.10 x64 box with tools I use.
  ☆1,167Updated 4 months ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,000Updated this week
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,190Updated last week
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆960Updated 3 weeks ago
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆989Updated 2 years ago
• jaeles-project / jaeles
  The Swiss Army knife for automated Web Application Testing
  ☆2,166Updated 6 months ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,540Updated 4 years ago
• gwen001 / github-search
  A collection of tools to perform searches on GitHub.
  ☆1,347Updated last year
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,133Updated 3 years ago
• devanshbatham / FavFreak
  Making Favicon.ico based Recon Great again !
  ☆1,127Updated last year
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,966Updated 4 months ago