pownjs / pown

Related projects: ⓘ

• pownjs / recon
  A powerful target reconnaissance framework powered by graph theory.
  ☆419Updated last year
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆479Updated 3 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆393Updated 4 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆321Updated 2 years ago
• henshin / filebuster
  An extremely fast and flexible web fuzzer
  ☆212Updated last year
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆164Updated 5 years ago
• welchbj / bscan
  an asynchronous target enumeration tool
  ☆239Updated last year
• cheetz / sslScrape
  SSLScrape | A scanning tool for scaping hostnames from SSL certificates.
  ☆328Updated 3 years ago
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆263Updated 3 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• Cillian-Collins / dirscraper
  OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.
  ☆220Updated 5 years ago
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆137Updated last year
• C-Sto / recursebuster
  rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments
  ☆242Updated 4 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆438Updated 5 years ago
• RoliSoft / ReconScan
  Network reconnaissance and vulnerability assessment tools.
  ☆391Updated 2 years ago
• gwen001 / s3-buckets-finder
  Find AWS S3 buckets and test their permissions.
  ☆366Updated last year
• m8sec / nullinux
  Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…
  ☆550Updated 3 months ago
• SilverPoision / Rock-ON
  Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.
  ☆291Updated 4 years ago
• m4ll0k / AutoNSE
  ☆326Updated this week
• proabiral / inception
  A highly configurable Framework for easy automated web scanning
  ☆357Updated 4 years ago
• nccgroup / tracy
  A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
  ☆552Updated last year
• bugbountyforum / XSS-Radar
  ☆316Updated 6 years ago
• m4ll0k / BurpSuite-Secret_Finder
  ☆472Updated this week
• hexrom / PenetrationTesting-Playbook
  Penetration Testing Notes and Playbook (PTP)
  ☆174Updated 5 years ago
• zeropwn / spyse.py
  Python API wrapper and command-line client for the tools hosted on spyse.com.
  ☆265Updated 4 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆301Updated 5 years ago
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆345Updated 6 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆523Updated 2 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆379Updated last year
• nnposter / nndefaccts
  nnposter's alternate fingerprint dataset for Nmap script http-default-accounts
  ☆242Updated last week