rootDR / ex-paramLinks
ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET parameters, and tests them for reflected input. The tool helps bug bounty hunters and penetration testers quickly identify potential reflected XSS flaws, offering fast and reliable results.
☆61Updated 6 months ago
Alternatives and similar repositories for ex-param
Users that are interested in ex-param are comparing it to the libraries listed below
Sorting:
- A passive way to find backups/ sensitive information.☆86Updated 2 months ago
- ☆95Updated 5 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆114Updated 10 months ago
- Fback is a tool that helps you create target-specific wordlists using a .json pattern.☆56Updated 2 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆81Updated 2 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 2 months ago
- An automated recon tool for asset discovery and vulnerability scanning using open-source tools. Supports XSS, SQLi, LFI, RCE, IIS, Open R…☆86Updated last week
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆123Updated 8 months ago
- ☆23Updated 11 months ago
- Grep subdomains from web pages.☆44Updated 7 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆85Updated 8 months ago
- ☆69Updated 3 months ago
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆64Updated last year
- 🔍 SubWatch – Automated Subdomain Monitoring Script☆37Updated 3 months ago
- xsschecker tests endpoints for reflected XSS by injecting payloads and checking responses. It prints vulnerable if the payload is reflect…☆32Updated last week
- A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!☆30Updated 7 months ago
- ☆19Updated last week
- ☆152Updated last year
- ☆122Updated 3 weeks ago
- ☆144Updated 6 months ago
- A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights…☆38Updated 10 months ago
- A Series of Tweets☆16Updated last year
- This script Crawl the website and find the urls that contains html forms.☆71Updated last year
- bring shodan facets into your terminal without API key.☆64Updated last month
- A comprehensive collection of various techniques and methods for bypassing Two-Factor Authentication (2FA) security mechanisms.☆54Updated 8 months ago
- Private Nuclei Templates☆100Updated 6 months ago
- Bypass Reset Password Code Lead to Account Takeover☆26Updated last year
- Gather results of dorks across a number of search engines☆137Updated 4 months ago
- ☆68Updated 2 years ago
- Find The Admin Panel & SQL Injection Endpoints, Using Google Dorks !!!☆20Updated 10 months ago