nyancrimew / goop
Yet another tool to dump a git repository from a website, focused on as-complete-as-possible dumps and handling weird edge-cases.
β604Updated last year
Alternatives and similar repositories for goop:
Users that are interested in goop are comparing it to the libraries listed below
- An extension for checking if .git is exposed in visited websitesβ416Updated 7 months ago
- πͺ CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.β867Updated 2 months ago
- β383Updated 3 years ago
- Obtain GraphQL API schema even if the introspection is disabledβ1,147Updated 6 months ago
- Making Favicon.ico based Recon Great again !β1,172Updated last year
- "Can I take over DNS?" β a list of DNS providers and how to claim vulnerable domains.β1,021Updated last month
- Content-Type Researchβ607Updated last year
- Scrape domain names from SSL certificates of arbitrary hostsβ639Updated last year
- Tool for catching and logging different types of requests.β220Updated 4 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β709Updated 2 years ago
- Electron JS Browser To Find XSS Vulnerabilities Automaticallyβ690Updated 4 years ago
- β536Updated last week
- Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.β675Updated last year
- An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.β601Updated last year
- Client Side Prototype Pollution Scannerβ517Updated 2 years ago
- The most exhaustive list of reliable DNS resolvers.β753Updated this week
- Subdomain and target enumeration tool built for offensive security testingβ859Updated 9 months ago
- Keyfinderπ is a tool that let you find keys while surfing the web!β531Updated 2 years ago
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,402Updated this week
- A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..eβ¦β967Updated 9 months ago
- Private key usage verificationβ432Updated 3 months ago
- A tool for IDN homograph attacks and detection.β734Updated 4 years ago
- β276Updated 2 years ago
- a javascript change monitoring tool for bugbountiesβ636Updated 8 months ago
- PNG IDAT chunks XSS payload generatorβ187Updated 2 years ago
- bypass-url-parserβ1,063Updated this week
- Hidden parameters discovery suiteβ1,804Updated 6 months ago
- This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests aβ¦β329Updated 3 years ago
- A Firefox Web Extension to improve the discovery of DOM XSS.β272Updated 4 months ago
- A tool for bug hunting or pentesting for targeting websites that have open .git repositories available in publicβ350Updated 4 years ago