ronin-rb / ronin-vulns
Tests URLs for Local File Inclusion (LFI), Remote File Inclusion (RFI), SQL injection (SQLi), and Cross Site Scripting (XSS), Server Side Template Injection (SSTI), and Open Redirects.
☆76Updated 2 months ago
Alternatives and similar repositories for ronin-vulns:
Users that are interested in ronin-vulns are comparing it to the libraries listed below
- A micro-framework and tool for performing reconnaissance.☆38Updated 2 months ago
- ☆73Updated 11 months ago
- A curated list wordlists for bruteforcing and fuzzing☆82Updated 2 years ago
- ☆55Updated 2 years ago
- ☆68Updated last year
- JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host and…☆34Updated 8 months ago
- A python3 script searching for secret on swaggerhub☆65Updated 3 years ago
- Hunt SSL Certificates for interesting keywords on major cloud service providers / internet☆39Updated last week
- Striping CDN IPs from a list of IP Addresses☆77Updated 2 years ago
- Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.☆66Updated 3 years ago
- Filter URLs to save your time.☆60Updated 2 years ago
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆23Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 6 months ago
- A collection of one off hacks and simple scripts☆28Updated 2 years ago
- ☆56Updated 11 months ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…☆122Updated 2 years ago
- Scans remote JavaScript files with Trufflehog + Semgrep to detect leaked secrets☆56Updated 3 months ago
- a simple discovery script that uses popular tools like subfinder, amass, puredns, alterx, massdns and others☆77Updated last year
- A "Spring4Shell" vulnerability scanner.☆49Updated 3 months ago
- Automate Scoping, OSINT and Recon assessments.☆95Updated 2 months ago
- Apache Tomcat exploit and Pentesting guide for penetration tester☆59Updated 2 years ago
- PassMute - A multi featured Password Transmutation/Mutator Tool☆51Updated last year
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Updated last year
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆59Updated 2 years ago
- HTTP verb tampering & methods enumeration☆58Updated 3 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- My personal collection of nuclei templates made for fuzzing.☆27Updated 7 months ago
- Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing☆55Updated last year