rivalsec / pathbuster
PathBuster - multiple hosts Web path scanner
☆22Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for pathbuster
- XSS Finder Via SSTI☆54Updated last year
- ☆21Updated 2 years ago
- This tool allows you to find ssti vulnerability with ease!☆19Updated 2 years ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆18Updated last year
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆21Updated 4 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆16Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 3 years ago
- Scan Wordpress Servers for Access Control Issues☆9Updated last year
- This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for W…☆12Updated 7 months ago
- ☆21Updated 3 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated last year
- Automate bug bounty recon using bash alias☆15Updated 3 months ago
- ☆43Updated 3 years ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Updated 3 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- BurpSiute - BurpBounty Profiles☆19Updated last year
- Cool One Liners at one place to make your recon and bug bounty skills better !☆17Updated 4 years ago
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 2 years ago
- ☆21Updated 3 years ago
- Hidden input parameters finder☆16Updated last year
- A simple utility to generate domain names with all possible TLDs☆23Updated last year
- An SSRF detector tool written in golang. I have fixed some errors and added some more payloads to it. But the tool credits go to z0idsec.☆43Updated 3 years ago
- ☆12Updated 2 years ago
- Nuclei Templates☆10Updated last year
- bug bounty automation☆13Updated 3 years ago
- A solid recon tool I use personally.☆30Updated last year
- ☆14Updated last year
- Alternative to XSS Hunter for blind XSS.☆48Updated last year