pikpikcu / hostinject
hostinject (Host Header Injection) Tool is a Python script that allows you to perform host header injection vulnerability testing on a target URL or a list of URLs. It injects various header values and checks for potential vulnerabilities.
☆17Updated last year
Related projects ⓘ
Alternatives and complementary repositories for hostinject
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆58Updated last month
- This script reads a text file containing domains, fetches the subdomains from crt.sh☆10Updated last year
- Bypass Reset Password Code Lead to Account Takeover☆22Updated 2 months ago
- Simple Automation script for juniper cve-2023-36845☆18Updated 9 months ago
- ☆42Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 3 weeks ago
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆38Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- A simple plugin to export JS files from one or multiple targets☆39Updated last year
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated 2 weeks ago
- This is a Kind of Dictionary which contains all kinds of Web Application and Network Security Vulnerabilities and other security concepts…☆19Updated 3 months ago
- Check if domain has bug bounty program or not☆29Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 10 months ago
- A standalone Blind XSS Script.☆45Updated last year
- ☆38Updated 3 years ago
- Authorization-Nuclei-Templates☆37Updated 2 months ago
- Nuclei Templates☆16Updated last month
- Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.☆66Updated last year
- ☆20Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Tool for testing reflections in the HTTP responses☆60Updated last year
- A solid recon tool I use personally.☆30Updated last year
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- Private Nuclei Templates☆88Updated last year
- A Lightning-Fast DNS Resolver written in Rust 🦀☆65Updated this week
- Dons Js Scanner is a sleek command-line tool that hunts for hidden treasures—API keys, credentials, and secrets—lurking in the JavaScript…☆79Updated 3 months ago
- This tool is a simple LFI, RFI, RCE, and Joomla Components vulnerability scanner, created by JayCyberSecurity☆22Updated 2 years ago
- anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…☆23Updated 3 weeks ago
- IIS shortname scanner + bruteforce☆49Updated 9 months ago
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.☆96Updated last month