s0md3v / XSStrike
Most advanced XSS scanner.
☆13,762Updated last week
Alternatives and similar repositories for XSStrike:
Users that are interested in XSStrike are comparing it to the libraries listed below
- Awesome XSS stuff☆4,872Updated 4 months ago
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,449Updated last year
- HTTP parameter discovery suite.☆5,528Updated last month
- Next generation web scanner☆5,786Updated 8 months ago
- Automated All-in-One OS Command Injection Exploitation Tool.☆5,203Updated this week
- Fast subdomains enumeration tool for penetration testers☆10,228Updated 7 months ago
- 🔥 Web-application firewalls (WAFs) from security standpoint.☆6,559Updated 5 months ago
- Web application fuzzer☆6,110Updated 7 months ago
- File upload vulnerability scanner and exploitation tool.☆3,180Updated last year
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,573Updated 2 months ago
- Fast web fuzzer written in Go☆13,652Updated 8 months ago
- Web path scanner☆12,702Updated last month
- Git All the Payloads! A collection of web attack payloads.☆3,710Updated last year
- A Tool for Domain Flyovers☆5,732Updated 2 years ago
- Server-Side Template Injection and Code Injection Detection and Exploitation Tool☆3,897Updated 11 months ago
- A Workflow Engine for Offensive Security☆5,533Updated last month
- "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.☆5,083Updated last month
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,675Updated 7 months ago
- A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…☆3,766Updated 3 years ago
- Fast passive subdomain enumeration tool.☆11,380Updated last week
- A python script that finds endpoints in JavaScript files☆3,870Updated 11 months ago
- Directory/File, DNS and VHost busting tool written in Go☆11,200Updated this week
- Nikto web server scanner☆9,071Updated last month
- Automated NoSQL database enumeration and web application exploitation tool.☆3,029Updated 8 months ago
- A high performance offensive security tool for reconnaissance and vulnerability scanning☆3,160Updated 9 months ago
- CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs☆2,389Updated 11 months ago
- A repository with 3 tools for pwn'ing websites with .git repositories available☆3,953Updated last year
- Knock Subdomain Scan☆3,958Updated 4 months ago
- WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…☆8,908Updated last week
- Detect and bypass web application firewalls and protection systems☆2,742Updated 7 months ago