r0oth3x49 / ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
β3,294Updated last month
Alternatives and similar repositories for ghauri:
Users that are interested in ghauri are comparing it to the libraries listed below
- Rockyou for web fuzzingβ2,665Updated 4 months ago
- ππ¦ Dalfox is a powerful open-source XSS scanner and utility focused on automation.β3,880Updated last week
- A simple script just made for self use for bypassing 403β1,792Updated 7 months ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)β1,376Updated 2 years ago
- Automatic SSRF fuzzer and exploitation toolβ3,051Updated 7 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probingβ2,581Updated 6 months ago
- NucleiFuzzer is a robust automation tool designed for efficiently detecting web application vulnerabilities, including XSS, SQLi, SSRF, aβ¦β1,400Updated this week
- Automated & Manual Wordlists provided by Assetnoteβ1,358Updated 5 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.β4,106Updated 2 weeks ago
- An XSS exploitation command-line interface and payload generator.β1,284Updated 2 weeks ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attβ¦β4,890Updated this week
- An OOB interaction gathering server and client libraryβ3,549Updated this week
- Quickly discover exposed hosts on the internet using multiple search engines.β2,497Updated this week
- HTTP parameter discovery suite.β5,376Updated last month
- Extract URLs, paths, secrets, and other interesting bits from JavaScriptβ1,460Updated 7 months ago
- Top disclosed reports from HackerOneβ4,098Updated 3 weeks ago
- A cheat sheet that contains advanced queries for SQL Injection of all types.β2,917Updated last year
- A python script that finds endpoints in JavaScript filesβ3,789Updated 9 months ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entβ¦β1,763Updated last month
- A collection of awesome one-liner scripts especially for bug bounty tips.β2,754Updated 5 months ago
- dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.β2,244Updated this week
- Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rulesβ¦β5,608Updated 6 months ago
- Asset inventory of over 800 public bug bounty programs.β1,298Updated last month
- Automatic SSTI detection tool with interactive interfaceβ919Updated 3 months ago
- Fetch all the URLs that the Wayback Machine knows about for a domainβ3,639Updated 8 months ago
- Real-world infosec wordlists, updated regularlyβ1,429Updated this week
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!β1,829Updated 2 weeks ago
- Tool to bypass 403/40X response codes.β1,166Updated 2 weeks ago
- Hidden parameters discovery suiteβ1,748Updated 4 months ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript filesβ2,065Updated 7 months ago