rootDR / ex-param
ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET parameters, and tests them for reflected input. The tool helps bug bounty hunters and penetration testers quickly identify potential reflected XSS flaws, offering fast and reliable results.
☆36Updated 2 weeks ago
Alternatives and similar repositories for ex-param:
Users that are interested in ex-param are comparing it to the libraries listed below
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆12Updated last month
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆26Updated last month
- ☆34Updated 2 weeks ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆30Updated 9 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆54Updated last month
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆54Updated 3 weeks ago
- An automated bug hunting tool for comprehensive reconnaissance, including subdomain enumeration, port scanning, vulnerability detection, …☆11Updated 2 months ago
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆30Updated 6 months ago
- FireHawk: The Elite Firebase Security Testing Utility☆18Updated 6 months ago
- Url scrapper or extractor from alienvault☆30Updated 2 weeks ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆77Updated 4 months ago
- Bypass Reset Password Code Lead to Account Takeover☆22Updated 3 months ago
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆38Updated 7 months ago
- shef - extract/scrape IPs from shodan without any API key☆36Updated last month
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆61Updated 2 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated last month
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆59Updated last week
- Oneliner Bug Bounty Collection collected from GitHub to all bug bounty hunters☆27Updated last year
- ☆56Updated 3 months ago
- A collection of slides and presentations from BSides Ahmedabad 2024, held on October 12th and 13th. This repository features key insights…☆35Updated 2 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆27Updated 4 months ago
- A Series of Tweets☆13Updated 10 months ago
- ☆42Updated last year
- A simple bug bounty utility tool to remove uninteresting entries from a list of URLs.☆15Updated 4 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆37Updated last month
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆21Updated last month
- Advanced Tool To Scan And Exploit Local File Inclusion (LFI) Vulnerabilities☆31Updated last year
- ☆16Updated 4 months ago