pownjs / pown
Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.
☆259Updated last year
Related projects: ⓘ
- A powerful target reconnaissance framework powered by graph theory.☆419Updated last year
- DNS Rebinding Exploitation Framework☆479Updated 3 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆393Updated 4 years ago
- secretz, minimizing the large attack surface of Travis CI☆321Updated 2 years ago
- An extremely fast and flexible web fuzzer☆212Updated last year
- Fuzzing Payloads to Assist in Web Application Testing.☆164Updated 5 years ago
- an asynchronous target enumeration tool☆239Updated last year
- SSLScrape | A scanning tool for scaping hostnames from SSL certificates.☆328Updated 3 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆263Updated 3 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.☆220Updated 5 years ago
- 🏰 A Python script for AWS S3 bucket enumeration.☆137Updated last year
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆242Updated 4 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆438Updated 5 years ago
- Network reconnaissance and vulnerability assessment tools.☆391Updated 2 years ago
- Find AWS S3 buckets and test their permissions.☆366Updated last year
- Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…☆550Updated 3 months ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆291Updated 4 years ago
- ☆326Updated this week
- A highly configurable Framework for easy automated web scanning☆357Updated 4 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆552Updated last year
- ☆316Updated 6 years ago
- ☆472Updated this week
- Penetration Testing Notes and Playbook (PTP)☆174Updated 5 years ago
- Python API wrapper and command-line client for the tools hosted on spyse.com.☆265Updated 4 years ago
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆301Updated 5 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆345Updated 6 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆523Updated 2 years ago
- A collection of useful Serverless functions I use when pentesting☆379Updated last year
- nnposter's alternate fingerprint dataset for Nmap script http-default-accounts☆242Updated last week