mzfr / liffy
Local file inclusion exploitation tool
☆851Updated last year
Alternatives and similar repositories for liffy:
Users that are interested in liffy are comparing it to the libraries listed below
- Fetches javascript file from a list of URLS or subdomains.☆760Updated last year
- A fuzzer for detecting open redirect vulnerabilities☆738Updated 9 months ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆955Updated 3 years ago
- Tool to help exploit XXE vulnerabilities☆556Updated 2 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆954Updated 3 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆708Updated last year
- Open Redirection Analyzer☆768Updated 2 years ago
- Automation for javascript recon in bug bounty.☆977Updated last year
- A Powerful Subdomain Takeover Tool☆942Updated last year
- Accept URLs on stdin, replace all query string values with a user-supplied value☆801Updated 2 years ago
- Making Favicon.ico based Recon Great again !☆1,172Updated last year
- The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.☆1,193Updated last month
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,715Updated 11 months ago
- GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep☆1,274Updated 6 months ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆645Updated 6 years ago
- ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.☆780Updated last year
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆534Updated 2 years ago
- A wordlist of API names for web application assessments☆801Updated last month
- Quick SQLMap Tamper Suggester☆1,366Updated 2 years ago
- Heuristic Vulnerable Parameter Scanner☆585Updated last year
- PwnFox is a Firefox/Burp extension that provide usefull tools for your security audit.☆1,128Updated 7 months ago
- Content discovery wordlists generated using BigQuery☆565Updated 4 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆623Updated 4 months ago
- Leverages publicly available datasets from Google BigQuery to generate content discovery and subdomain wordlists☆721Updated 2 years ago
- A fast DOM based XSS vulnerability scanner with simplicity.☆788Updated 2 years ago
- Open Redirect Payloads☆607Updated 5 months ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆527Updated 6 years ago
- Web App bug hunting☆561Updated 3 weeks ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,225Updated last year
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆683Updated last year