nccgroup / singularity
A DNS rebinding attack framework.
☆1,018Updated 3 months ago
Related projects: ⓘ
- ☆950Updated 9 months ago
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆967Updated 3 years ago
- A Powerful Subdomain Takeover Tool☆919Updated 11 months ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,657Updated 4 months ago
- Simple DNS Rebinding Service☆613Updated 4 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,030Updated 2 months ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆635Updated 5 years ago
- ☆1,203Updated last week
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆986Updated 3 years ago
- Notes about attacking Jenkins servers☆1,949Updated 2 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,188Updated 9 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,335Updated last year
- A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)☆619Updated 2 years ago
- ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.☆726Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,785Updated 8 months ago
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,299Updated 4 months ago
- Automated script for performing Padding Oracle attacks☆744Updated 2 months ago
- Finds unknown classes of injection vulnerabilities☆626Updated 11 months ago
- DotDotPwn - The Directory Traversal Fuzzer☆973Updated last year
- ☆684Updated last year
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆512Updated 2 years ago
- pwning IPv4 via IPv6☆1,675Updated 6 months ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆703Updated 5 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆924Updated this week
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.☆1,459Updated this week
- Automated HTTP Request Repeating With Burp Suite☆839Updated 2 years ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,472Updated last year
- ReverShellGenerator - A tool to generate various ways to do a reverse shell☆553Updated 4 months ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆637Updated 2 years ago
- Local file inclusion exploitation tool☆767Updated last year