oppsec / Pinkerton
π΅οΈ Pinkerton is an JavaScript file crawler and secret finder tool developed in Python
β281Updated 10 months ago
Related projects β
Alternatives and complementary repositories for Pinkerton
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzerβ378Updated last year
- Never forget where you inject.β211Updated last year
- Make URL path combinations using a wordlistβ173Updated last year
- AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,β563Updated 8 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.β428Updated 2 years ago
- Automated Tool for Testing Header Based Blind SQL Injectionβ264Updated last year
- SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bountyβ431Updated last month
- Nodesub is a command-line tool for finding subdomains in bug bounty programsβ136Updated 3 months ago
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas iβ¦β165Updated 2 months ago
- Jeeves SQLI Finderβ216Updated 2 years ago
- β193Updated 6 months ago
- A collection oneliner scripts for bug bountyβ171Updated 8 months ago
- An Automated Subdomain Enumeration Toolβ242Updated last month
- i will upload more templates here to share with the comunity.β531Updated 7 months ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.β480Updated last month
- This extension will help you to detect GET/POST based XSS vulnerability in any website easilyβ237Updated last year
- β314Updated last month
- Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what notβ267Updated 2 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration testβ¦β338Updated this week
- A Powerful Sensor Tool to discover login panels, and POST Form SQLi Scanningβ471Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,β¦β354Updated last month
- Crtsh Subdomain Enumeration | This bash script makes it easy to quickly save and parse the output from https://crt.sh website.β196Updated 2 months ago
- Text4Shell scanner for Burp Suiteβ191Updated 2 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS filesβ183Updated 4 months ago
- Smart context-based SSRF vulnerability scanner.β348Updated 2 years ago
- Useful "Match and Replace" burpsuite rulesβ339Updated last year
- β235Updated 3 years ago
- Nuclei AI - Browser Extension for Rapid Nuclei Template Generationβ448Updated last year
- Self-hosted passive subdomain continous monitoring tool.β155Updated 9 months ago
- Go script for bypassing 403 forbiddenβ144Updated 3 years ago