roottusk / xforwardy
Host Header Injection Scanner
☆44Updated 4 years ago
Alternatives and similar repositories for xforwardy:
Users that are interested in xforwardy are comparing it to the libraries listed below
- golang tool to scan domains or single domains with know security issues against xmlrpc☆60Updated last year
- Tool to automate recon☆43Updated 3 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆71Updated 3 years ago
- The objective of this Burp Suite extension is the flexible and dynamic extraction, correlation, and structured presentation of informatio…☆55Updated 2 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- Host Header Injection Checker☆80Updated 2 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- Domain availbility checker☆39Updated 3 years ago
- Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.☆41Updated 5 years ago
- My Tools For Bug Bounty☆65Updated 4 months ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆44Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆90Updated this week
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆79Updated 3 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 2 years ago
- AWS S3 open bucket poc automated script.☆56Updated 3 years ago
- Tool to generate csrf payloads based on vulnerable requests☆62Updated 4 years ago
- Virtual host wordlist☆51Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆86Updated 8 months ago
- 🖇 Enumerate git repository URL from list of URL / User / Org. Friendly to pipeline☆59Updated 2 months ago
- Shodan Favicon Hash Generator By Aziz Hakim @eternyle☆25Updated 8 months ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- Add headers to all Burp requests to bypass some WAF products☆38Updated last year
- ☆48Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Updated 4 years ago
- A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…☆63Updated 4 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆57Updated 4 years ago