nikhil1232 / Bucket-Flaws
Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
☆58Updated 4 years ago
Alternatives and similar repositories for Bucket-Flaws:
Users that are interested in Bucket-Flaws are comparing it to the libraries listed below
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- ☆38Updated 4 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- ☆24Updated 4 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- ☆35Updated 2 months ago
- Converts a hostname (or URI) to IP address using your local resolver☆24Updated 11 months ago
- ☆59Updated 8 months ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- A simple tool which makes creating nuclei templates even easier.☆36Updated 9 months ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆57Updated 3 years ago
- ☆48Updated 4 years ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆42Updated 2 years ago
- Recon Custom WordList Ganerator☆57Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆28Updated 3 years ago
- sub domain wild card filtering tool☆41Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.☆41Updated 5 years ago
- This script scrapes the list of open Bug Bounty Programs from openbugbounty.org☆27Updated 3 years ago
- Alias for storing ffuf results☆20Updated 4 years ago
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 4 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 3 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆62Updated 3 years ago
- ☆15Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- ☆30Updated 2 years ago
- web-based-fuzzer☆32Updated 4 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆44Updated 2 years ago
- Send notifications on different channels such as Slack, Telegram, Discord etc.☆39Updated last year