JShell - Get a JavaScript shell with XSS.
☆533May 5, 2019Updated 6 years ago
Alternatives and similar repositories for JShell
Users that are interested in JShell are comparing it to the libraries listed below
Sorting:
- A python module for dumping usable proxies.☆164Nov 13, 2019Updated 6 years ago
- A friend of SQLmap which will do what you always expected from SQLmap.☆450May 5, 2019Updated 6 years ago
- Awesome XSS stuff☆5,073Oct 30, 2024Updated last year
- Intelligent login bruteforcer.☆910Apr 27, 2023Updated 2 years ago
- Cloak can backdoor any python script with some tricks.☆501May 5, 2019Updated 6 years ago
- Nano is a family of PHP web shells which are code golfed for stealth.☆448Feb 18, 2020Updated 6 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,917Apr 13, 2022Updated 3 years ago
- Entropy is a (prototype) WAF driven by maths.☆57May 5, 2019Updated 6 years ago
- Striker is an offensive information and vulnerability scanner.☆2,322Jun 4, 2023Updated 2 years ago
- Improved DOS exploit for wordpress websites (CVE-2018-6389)�☆128Oct 1, 2020Updated 5 years ago
- Locky generates "really" strong yet easy to remember passwords.☆71May 5, 2019Updated 6 years ago
- Most advanced XSS scanner.☆14,822Apr 26, 2025Updated 10 months ago
- ☆182Feb 21, 2022Updated 4 years ago
- Crack hashes in seconds.☆1,868Dec 10, 2024Updated last year
- CSRF Scanner☆584Jun 28, 2024Updated last year
- An advanced multithreaded admin panel finder written in python.☆838May 17, 2024Updated last year
- Drupal enumeration & exploitation tool☆610Nov 4, 2020Updated 5 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆471Nov 14, 2019Updated 6 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,250Jan 8, 2026Updated 2 months ago
- Reconnaissance Swiss Army Knife☆2,019Jan 26, 2021Updated 5 years ago
- Detect and decode encoded strings, recursively.☆925Sep 16, 2025Updated 6 months ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,721Dec 1, 2024Updated last year
- A PoC Java Stager which can download, compile, and execute a Java file in memory.☆108Aug 6, 2018Updated 7 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆583Sep 7, 2021Updated 4 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,784Apr 26, 2024Updated last year
- Script to automate PUT HTTP method exploitation to get shell☆125Jun 25, 2020Updated 5 years ago
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆4,125Apr 21, 2024Updated last year
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆293Aug 23, 2019Updated 6 years ago
- ☆2,319Dec 8, 2023Updated 2 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆278Feb 12, 2021Updated 5 years ago
- Extract endpoints from apk files.☆878Jan 7, 2022Updated 4 years ago
- HTTP parameter discovery suite.☆6,142Feb 20, 2025Updated last year
- ☆332Jan 8, 2018Updated 8 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆383Aug 17, 2018Updated 7 years ago
- CORS checking☆34Jul 16, 2018Updated 7 years ago
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,125Feb 10, 2021Updated 5 years ago
- File upload vulnerability scanner and exploitation tool.☆3,303May 8, 2025Updated 10 months ago