rastating / xss-chefLinks
A web application for generating custom XSS payloads
☆77Updated 5 years ago
Alternatives and similar repositories for xss-chef
Users that are interested in xss-chef are comparing it to the libraries listed below
Sorting:
- Automatic remote/local file inclusion vulnerability analysis and exploit tool☆60Updated 6 years ago
- A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.☆98Updated 6 years ago
- Pillage a git repo found in an accessible web root☆61Updated 14 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 7 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- XSS explot kit/Blind XSS framework/BurpSuite extension☆49Updated 4 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆137Updated 5 years ago
- Tools used for Penetration testing / Red Teaming☆66Updated 6 years ago
- My notebook for OSCP Lab☆25Updated 7 years ago
- An interactive OOB XXE data exfiltration tool☆90Updated 8 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!☆98Updated 7 years ago
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆64Updated 6 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆121Updated 6 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆138Updated 4 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- Samba, NFS shares spider and grepper☆70Updated 6 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 3 years ago
- subdomain bruteforce list☆101Updated 7 months ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆83Updated 2 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆76Updated 6 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆71Updated 4 years ago
- A collection of scripts used to interact with the Burp Rest API☆52Updated 6 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆92Updated 6 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- Dirty bash script to obtain hosts given an IP address☆35Updated 4 years ago