prjblk / wordpress-audit-automationLinks
Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a database.
☆89Updated last year
Alternatives and similar repositories for wordpress-audit-automation
Users that are interested in wordpress-audit-automation are comparing it to the libraries listed below
Sorting:
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆154Updated 4 months ago
- Abuse trust-boundaries to bypass firewalls and network controls☆385Updated 6 months ago
- Official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc…☆86Updated 11 months ago
- The Template Injection Playground allows to test a large number of the most relevant template engines for template injection possibilitie…☆58Updated last month
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆131Updated last year
- ☆195Updated 9 months ago
- AI/LLM local model integration for analysis of reconftw results☆91Updated 9 months ago
- Adobe Experience Manager (AEM) hacking toolkit☆103Updated 4 months ago
- ☆173Updated 6 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆140Updated last year
- A Burp extension to help pentesters copy requests / responses for reports.☆51Updated 7 months ago
- This repository contains information on the CVEs I found.☆52Updated last year
- FrogPost: postMessage Security Testing Tool☆108Updated 2 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆104Updated 6 months ago
- Search for sensitive data in Postman public library.☆214Updated 5 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆151Updated 10 months ago
- CoWitness is a powerful web application testing tool that enhances the accuracy and efficiency of your testing efforts. It allows you to …☆126Updated last year
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆71Updated 2 years ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆128Updated 3 years ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆244Updated last week
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆331Updated 3 months ago
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆116Updated 2 years ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆160Updated 5 months ago
- An Incredibly Annoying, Insufferable Authentication Implementation☆31Updated last year
- ☆47Updated 11 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆165Updated last year
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆133Updated last year
- Recon MindMap (RMM)☆177Updated last year
- ☆96Updated 10 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 7 months ago