r0oth3x49 / ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
☆3,305Updated 2 months ago
Alternatives and similar repositories for ghauri:
Users that are interested in ghauri are comparing it to the libraries listed below
- Rockyou for web fuzzing☆2,676Updated this week
- NucleiFuzzer is a robust automation tool designed for efficiently detecting web application vulnerabilities, including XSS, SQLi, SSRF, a…☆1,412Updated this week
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆3,898Updated this week
- A simple script just made for self use for bypassing 403☆1,798Updated 7 months ago
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,469Updated 8 months ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆2,594Updated 7 months ago
- Automatic SSTI detection tool with interactive interface☆958Updated 3 months ago
- 403/401 Bypass Methods + Bash Automation + Your Support ;)☆1,390Updated 2 years ago
- Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned ent…☆1,774Updated 2 months ago
- Tool to bypass 403/40X response codes.☆1,168Updated 3 weeks ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,072Updated 8 months ago
- Automatic SSRF fuzzer and exploitation tool☆3,060Updated 7 months ago
- This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter☆2,799Updated 11 months ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,295Updated 6 months ago
- Burp Plugin to Bypass WAFs through the insertion of Junk Data☆1,002Updated last week
- Quickly discover exposed hosts on the internet using multiple search engines.☆2,502Updated last week
- An OOB interaction gathering server and client library☆3,558Updated last week
- Automated & Manual Wordlists provided by Assetnote☆1,366Updated 5 months ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆4,903Updated this week
- A simple tool for bypassing file upload restrictions.☆811Updated 6 months ago
- declutters url lists for crawling/pentesting☆1,254Updated 2 weeks ago
- Nuclei Templates Collection☆935Updated 8 months ago
- Check your WAF before an attacker does☆1,328Updated this week
- An XSS exploitation command-line interface and payload generator.☆1,292Updated last week
- Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!☆1,847Updated 3 weeks ago
- A fast tool to scan CRLF vulnerability written in Go☆1,375Updated this week
- Real-world infosec wordlists, updated regularly☆1,436Updated this week
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,126Updated 3 weeks ago
- Payload Arsenal for Pentration Tester and Bug Bounty Hunters☆898Updated last year
- An easy-to-setup version of XSS Hunter. Sets up in five minutes and requires no maintenance!☆1,701Updated 10 months ago