pwn0sec / PwnSSRF
A Python based scanner to find potential SSRF parameters in a web application.
☆72Updated 3 years ago
Alternatives and similar repositories for PwnSSRF:
Users that are interested in PwnSSRF are comparing it to the libraries listed below
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆65Updated last year
- My Tools For Bug Bounty☆66Updated 6 months ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆120Updated 3 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- Recon Custom WordList Ganerator☆57Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated 9 months ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆99Updated 3 years ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Webapp to search tips on Twitter through #bugbountytips☆71Updated 2 years ago
- Find subdomains and takeovers.☆84Updated 2 years ago
- Host Header Injection Checker☆80Updated 3 years ago
- ☆44Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- This is where I share code/material shown in my videos☆74Updated last year
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- Get the scope of your bugcrowd programs☆67Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆90Updated last month
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆57Updated 3 years ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- ☆40Updated last year
- Generates target specific word lists for Fuzzing with fuff☆108Updated 4 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆91Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆169Updated 4 years ago