mastomii / nexssLinks
NeXSS is a modern, self-hosted Blind XSS (Cross-Site Scripting) hunter and callback listener built with Next.js. It helps security researchers and penetration testers discover and validate blind XSS vulnerabilities by capturing detailed information when payloads execute on target systems.
β27Updated 2 weeks ago
Alternatives and similar repositories for nexss
Users that are interested in nexss are comparing it to the libraries listed below
Sorting:
- Resources for Mobile Application Testing πβ74Updated last year
- β95Updated 9 months ago
- β41Updated 2 years ago
- Subdosec is a fast, accurate subdomain takeover scanner with no false positives. It also offers a database of sites vulnerable to subdomaβ¦β55Updated last week
- Cyber Security Awareness Framework (CSAF)β100Updated 2 weeks ago
- A tool for inspecting and analyzing mobile application storage files.β49Updated 8 months ago
- A tool for listing and extracting installed Android APKs and decrypted iOS IPAs (plus app storage) from rooted or jailbroken devices.β38Updated 8 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's namβ¦β104Updated 6 months ago
- β‘ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.β55Updated last year
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!β154Updated 4 months ago
- Openhunting CTI - Threat Exposure Data Breach Account (Telegram)β66Updated 2 years ago
- A standalone collection of widely used technologies with default credentials enabled, which can be utilized for establishing an initial fβ¦β20Updated last year
- SSLPinDetect is a tool for analyzing Android APKs to detect SSL pinning implementations by scanning for known patterns in decompiled codeβ¦β48Updated 4 months ago
- β47Updated 10 months ago
- AI/LLM local model integration for analysis of reconftw resultsβ89Updated 8 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS APIβ75Updated last year
- β109Updated 11 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.β29Updated 7 months ago
- β22Updated 10 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unwβ¦β98Updated 6 months ago
- Search for all leaked keys/secrets using one regex! bugbountyβ182Updated 10 months ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identifβ¦β159Updated 5 months ago
- Hack The Box CPTS commandβ24Updated 7 months ago
- A passive way to find backups/ sensitive information.β87Updated 6 months ago
- Advanced APK analysis tool with intelligent caching, pattern matching, and comprehensive security vulnerability detectionβ82Updated 3 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attemptsβ66Updated 7 months ago
- β33Updated 9 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify β¦β43Updated 11 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.β75Updated 3 weeks ago
- Noxer is a powerful Python script designed for automating Android penetration testing tasks within the Nox Player emulator.β286Updated 2 years ago