mrnfrancesco / yass
YASS (Yet Another Subdomainer Software) is a plugin-powered search engine based subdomainer.
☆10Updated last year
Related projects ⓘ
Alternatives and complementary repositories for yass
- Get URLs from the Wayback Machine. Able to handle large outputs.☆22Updated last year
- This is a lazy enumeration script made to make bug bounty enum & pentest flyovers easy as cake!☆14Updated 4 years ago
- A tool that scans a list of given domains, and returns the status codes for each domain on both port 80 & 443☆18Updated 3 years ago
- Command List for Hashcat and default keyspaces.☆14Updated 4 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 3 years ago
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago
- Extract endpoints from specific Git repository for fuzzing☆21Updated 4 years ago
- Related subdomains finder☆29Updated 2 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- CVE-2020-5902☆9Updated 4 years ago
- Turn your VPS into an attack box☆31Updated 8 months ago
- Instant access to you bug bounty submission dashboard on various platforms + publicly disclosed reports + #bugbountytip☆20Updated 4 years ago
- Principles and commands for penetration testing and OSCP☆9Updated 4 years ago
- Information-Gathering Shell Script☆29Updated 4 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Rawsec's Cybersecurity Inventory cli. Search pentesting tools, resources, ctf, os.☆24Updated 3 weeks ago
- Create wordlists from source codes files/directories for enumeration☆30Updated last year
- Scripts for: How to Build a Covert Pentesting Infrastructure Almost Free☆21Updated 5 years ago
- whoareyou is a tool to find the underlying technology/software used in a list of websites passed through stdin (using Wappalyzer dataset)☆31Updated 4 years ago
- Python driver for Wappalyzer, a web application detection utility.☆10Updated 4 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Virtual host wordlist☆51Updated 3 years ago
- A companion repo to accompany detailed guides and YouTube content to allow users to follow along☆12Updated 4 years ago
- Use regular expressions to get sensitive information from a given repository (GitHub, pip or npm).☆35Updated 5 years ago
- A BurpSuite plugin for BBRF☆24Updated last week
- Docker-based platform for conducting MiTM attacks using Responder, NTLMRelayX, and Empire☆18Updated 11 months ago
- XSSRecon - Reflected XSS Scanner☆21Updated 4 years ago
- A Go scraper that validates security.txt files and outputs them in the disclose.io JSON format.☆20Updated 3 years ago