opabravo / dfuf
Dump files via Directory Traversal, LFI, Arbitrary File Read in a breeze with the help of ffuf
☆14Updated 9 months ago
Related projects: ⓘ
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆56Updated 2 months ago
- Private Nuclei Templates☆88Updated last year
- A collection of Bug Bounty Tips collected from GitHub to all bug bounty hunters☆25Updated 9 months ago
- Mind map for certifcation, vulnerability finding and recon for bug bounty and professional works.☆21Updated 6 months ago
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆27Updated 9 months ago
- Web Crawler for Identifying Entry Points☆12Updated 5 months ago
- ☆25Updated this week
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆87Updated last month
- Modern real world bug bounty payloads and exploitation techniques with may earn you some $$$.☆23Updated 10 months ago
- Testing default web credentials☆31Updated 9 months ago
- A standalone collection of widely used technologies with default credentials enabled, which can be utilized for establishing an initial f…☆15Updated 3 months ago
- Bug Bounty Web and API Payloads☆28Updated last month
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆121Updated 7 months ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 7 months ago
- Nuclei Templates☆17Updated 3 weeks ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆27Updated last month
- Fast subdomains enumeration tool for penetration testers and bug bounty hunters☆20Updated 7 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆70Updated last month
- ☆41Updated last year
- A Lightning-Fast DNS Resolver written in Rust 🦀☆62Updated 4 months ago
- A simple plugin to export JS files from one or multiple targets☆38Updated 10 months ago
- ☆52Updated last month
- collect robots.txt endpoint for allowed and disallowed endpoints from a list of subdomains☆16Updated last year
- Tools for bug bounty☆27Updated 6 months ago
- ☆47Updated 3 months ago
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- Bug Bounty Recon Automation Script -- Scan AWS IP Range Certs for Matching FQDN☆24Updated 3 years ago
- ☆45Updated 9 months ago
- Save your dorking results to the terminal. A modified version of TomNomNom's amazing tool!☆82Updated 7 months ago
- Gather results of dorks across a number of search engines☆74Updated 2 months ago