prjblk / wordpress-audit-automationLinks
Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a database.
☆77Updated 5 months ago
Alternatives and similar repositories for wordpress-audit-automation
Users that are interested in wordpress-audit-automation are comparing it to the libraries listed below
Sorting:
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆109Updated 2 months ago
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆48Updated 2 weeks ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆67Updated last year
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆150Updated 8 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆98Updated 3 weeks ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆136Updated 7 months ago
- AI/LLM local model integration for analysis of reconftw results☆72Updated 3 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆124Updated 6 months ago
- ☆187Updated 3 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆71Updated 4 months ago
- ☆94Updated 4 months ago
- A Burp Suite extension that helps track and manage multiple sessions simultaneously by color-coding HTTP requests based on custom pattern…☆27Updated 8 months ago
- FrogPost: postMessage Security Testing Tool☆92Updated 2 months ago
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆78Updated last year
- A list of all Active Directory machines from HackTheBox☆62Updated last week
- ☆76Updated last year
- ☆37Updated last month
- ☆46Updated 4 months ago
- Abuse trust-boundaries to bypass firewalls and network controls☆351Updated last week
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆125Updated last year
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆74Updated last month
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆95Updated last month
- A Burp extension to help pentesters copy requests / responses for reports.☆49Updated 3 weeks ago
- Search for sensitive data in Postman public library.☆209Updated 2 weeks ago
- A tool for inspecting and analyzing mobile application storage files.☆46Updated 2 months ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆128Updated 3 years ago
- A collection of config files for linux focusing on hackthebox theme☆49Updated 7 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆134Updated 4 months ago
- This repository contains information on the CVEs I found.☆47Updated last year
- undust is a URL pattern generator that helps uncover archived, backup, and temporary files left behind on web servers. Given a URL, it ge…☆45Updated 2 weeks ago