r0oth3x49 / Xpath
A python based cross-platform tool that automates the process of detecting and exploiting error-based injection security flaws.
☆139Updated 2 years ago
Alternatives and similar repositories for Xpath:
Users that are interested in Xpath are comparing it to the libraries listed below
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆214Updated 5 months ago
- Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for…☆145Updated 4 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆138Updated 5 years ago
- CVE-2017-9506 - SSRF☆188Updated 3 years ago
- Toolset for detecting reflected xss in websites☆112Updated 6 years ago
- Local File Inclusion Exploitation Tool (mirror)☆123Updated 8 years ago
- A simple XSS finding tool☆109Updated 6 years ago
- Relational database brute force and post exploitation tool for MySQL and MSSQL☆220Updated 9 months ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆311Updated 3 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆111Updated 2 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆254Updated 9 months ago
- This python script is developed to show, how many vulnerables websites, which are laying around on the web. 1) Scan net for urls prone to…☆54Updated 8 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆137Updated 4 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆271Updated 4 years ago
- XSSCon: Simple XSS Scanner tool☆217Updated 5 years ago
- Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).☆379Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 2 years ago
- subdomain bruteforce list☆101Updated 5 months ago
- Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.☆202Updated last year
- Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity☆201Updated 3 years ago
- Burp Suite extension to discover assets from HTTP response.☆223Updated 2 months ago
- BugBounty Tool☆39Updated 5 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities☆148Updated 2 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆111Updated 5 years ago
- Resolve and quickly portscan a list of (sub)domains.☆86Updated 8 years ago
- a tiny tool for swf hacking, just browse it:)☆241Updated 12 years ago
- Automate Metasploit scanning and exploitation☆115Updated 6 months ago
- Burp Suite Extensions☆127Updated 11 years ago