michelin / ChopChopLinks
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
β692Updated last year
Alternatives and similar repositories for ChopChop
Users that are interested in ChopChop are comparing it to the libraries listed below
Sorting:
- Awesome cloud enumeratorβ1,020Updated 4 months ago
- π Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.β422Updated 8 months ago
- Cloudlist is a tool for listing Assets from multiple Cloud Providers.β947Updated this week
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outpβ¦β477Updated 2 years ago
- BurpSuite Extension: A one-stop pen testing checklist and logger toolβ266Updated 2 years ago
- Golang client for querying SecurityTrails API dataβ562Updated last year
- Tool to check for dependency confusion vulnerabilities in multiple package management systemsβ731Updated 10 months ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.β383Updated 3 years ago
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.β400Updated 7 months ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β888Updated 6 months ago
- A rapid API for the Project Sonar datasetβ653Updated 2 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hacβ¦β988Updated 3 weeks ago
- Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.β419Updated 9 months ago
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!β875Updated last year
- VULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, iβ¦β500Updated this week
- Convolutional neural network for analyzing pentest screenshotsβ1,226Updated last year
- PwnMachine is a self hosting solution based on docker aiming to provide an easy to use pwning station for bug hunters.β316Updated 11 months ago
- Private key usage verificationβ430Updated 3 months ago
- Go client to communicate with Chaos DB API.β740Updated last week
- β391Updated 3 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β738Updated 3 years ago
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.β388Updated 2 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.β512Updated 3 years ago
- Organize your API security assessment by using MindAPI. It's free and open for community collaboration.β843Updated 5 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devicesβ627Updated last week
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters andβ¦β793Updated 2 years ago
- A script to enumerate Google Storage buckets, determine what access you have to them, and determine if they can be privilege escalated.β526Updated 2 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,453Updated 2 weeks ago
- Subdomain and target enumeration tool built for offensive security testingβ885Updated last year
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.β1,177Updated 11 months ago