rverton / xssmap
(DOM-)XSS fuzzer based on phantomjs and go.
☆34Updated 10 years ago
Alternatives and similar repositories for xssmap:
Users that are interested in xssmap are comparing it to the libraries listed below
- ☆125Updated 5 years ago
- Tool that will request the public disclosures on a specific HackerOne program and show them in a localhost webserver.☆64Updated 6 years ago
- Burp Commander written in Go☆58Updated 6 years ago
- differer finds how URLs are parsed by different languages in order to help bug hunters break filters☆63Updated 4 years ago
- WebBorer is a directory-enumeration tool written in Go.☆44Updated 2 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 8 years ago
- A list of subdomains for some of the most popular sites on the internet☆11Updated 6 years ago
- Mass scanning the internet (http and https) using a raw tcpstack.☆59Updated 8 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 2 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Updated 4 years ago
- S3 bucket enumerator☆44Updated 7 years ago
- Execute tasks across SSH hosts using random selection☆17Updated 4 years ago
- BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework☆26Updated 8 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Updated 10 years ago
- A Go implementation of dirsearch.☆43Updated 6 years ago
- Damn Small FI Scanner☆60Updated 5 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- Spiders given URLs for input fields.☆16Updated 7 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆43Updated 8 years ago
- HackerOne Public Disclosure Slack Bot☆20Updated 2 years ago
- A program to map out SPF and DKIM records for a large number of domains☆38Updated 10 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated 2 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- the puppy proxy☆22Updated 4 years ago
- Scans a list of websites for Cloudfront or S3 Buckets☆104Updated 3 years ago
- A horizontal and vertical web content enumerator☆52Updated 6 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- ❄️ Research project for SubFinder core API V2☆36Updated 6 years ago
- A Go library which main purpose is giving an interface to loop over a dictionary and use those words/lines as input for some custom logic…☆56Updated 7 years ago