naufalan / Web-App-MethodologyLinks
Collection of web app methodology from initial recon into exploit known vulnerability. Used when conducting Bug Bounty, Penetration Testing, or CTF
☆13Updated 3 years ago
Alternatives and similar repositories for Web-App-Methodology
Users that are interested in Web-App-Methodology are comparing it to the libraries listed below
Sorting:
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆26Updated 4 years ago
- ☆22Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- AWS S3 open bucket poc automated script.☆57Updated 4 years ago
- ☆38Updated 4 years ago
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆48Updated 2 years ago
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆29Updated 4 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆32Updated 3 years ago
- ☆55Updated 4 years ago
- Single-WebApp-Target essentials testing methodology tool starting at recon-information gathering for the juicy stuff ended up in exploita…☆23Updated 4 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Updated 4 years ago
- ☆48Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 5 years ago
- ☆38Updated 4 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Updated 3 years ago
- Basic Recon For Bug Bounty Hunter - "HuntTheBug" is Basic Scripts For Sub Domain Enumeration> Live Domain Enumeration > Sub Domain Hijack…☆55Updated 3 years ago
- Recon Custom WordList Ganerator☆58Updated 5 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 3 years ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆19Updated 4 years ago
- Alternative to XSS Hunter for blind XSS.☆51Updated 2 years ago
- XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for au…☆60Updated 3 years ago
- s3 brute force tool☆45Updated 4 years ago
- Ultimate Package Of 50 Bug Bounty Hunting Tools☆44Updated 2 years ago
- RECON Notes taking from every fucking book about bugbounty and web-app penetration testing exists☆20Updated 5 years ago
- jaVasCript:/*-/*`/*\`/*'/*"/**/(/* */oNcliCk=alert() )//%0D%0A%0d%0a//</stYle/</titLe/</teXtarEa/</scRipt/--!>\x3csVg/<sVg/oNloAd=alert()…☆10Updated 4 years ago
- Pipe different tools with google dork Scanner☆56Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Updated 5 years ago