nccgroup / singularity

Related projects: ⓘ

• PortSwigger / http-request-smuggler
  ☆950Updated 9 months ago
• ptoomey3 / evilarc
  Create tar/zip archives that can exploit directory traversal vulnerabilities
  ☆967Updated 3 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆919Updated 11 months ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,657Updated 4 months ago
• taviso / rbndr
  Simple DNS Rebinding Service
  ☆613Updated 4 years ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,030Updated 2 months ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆635Updated 5 years ago
• PortSwigger / param-miner
  ☆1,203Updated last week
• yassineaboukir / sublert
  Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
  ☆986Updated 3 years ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,949Updated 2 months ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,188Updated 9 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,335Updated last year
• brannondorsey / whonow
  A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)
  ☆619Updated 2 years ago
• christophetd / censys-subdomain-finder
  ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
  ☆726Updated last year
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,785Updated 8 months ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,299Updated 4 months ago
• AonCyberLabs / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆744Updated 2 months ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆626Updated 11 months ago
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆973Updated last year
• jmdx / TLS-poison
  ☆684Updated last year
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆512Updated 2 years ago
• dirkjanm / mitm6
  pwning IPv4 via IPv6
  ☆1,675Updated 6 months ago
• nccgroup / BurpSuiteHTTPSmuggler
  A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
  ☆703Updated 5 years ago
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆924Updated this week
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,459Updated this week
• nccgroup / AutoRepeater
  Automated HTTP Request Repeating With Burp Suite
  ☆839Updated 2 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,472Updated last year
• mthbernardes / rsg
  ReverShellGenerator - A tool to generate various ways to do a reverse shell
  ☆553Updated 4 months ago
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆637Updated 2 years ago
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆767Updated last year