s0md3v / nano
Nano is a family of PHP web shells which are code golfed for stealth.
☆442Updated 5 years ago
Alternatives and similar repositories for nano:
Users that are interested in nano are comparing it to the libraries listed below
- Bypassing disabled exec functions in PHP (c) CRLF☆401Updated 4 years ago
- Extract subdomains from SSL certificates in HTTPS sites.☆384Updated 2 months ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆469Updated 5 years ago
- Free web-application vulnerability and version scanner☆574Updated 2 months ago
- JShell - Get a JavaScript shell with XSS.☆523Updated 6 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆425Updated 5 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆534Updated 4 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆353Updated 2 months ago
- Multi Tool Subdomain Enumeration☆726Updated 4 years ago
- Exploitation for XSS☆714Updated 3 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆548Updated 2 years ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆396Updated 5 years ago
- Note: Going through a full re-write of the tooling so the current versions in the repo do not work!☆405Updated 4 years ago
- Drupal enumeration & exploitation tool☆601Updated 4 years ago
- A friend of SQLmap which will do what you always expected from SQLmap.☆441Updated 6 years ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆361Updated last year
- A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…☆436Updated 3 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆634Updated 6 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆274Updated 4 years ago
- Some tools to automate recon - 003random☆294Updated 6 years ago
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.☆228Updated 6 years ago
- Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)☆587Updated 4 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- Linux privilege escalation checks (systemd, dbus, socket fun, etc)☆289Updated 5 years ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,232Updated last year
- A tool to find and exploit servers vulnerable to Shellshock☆333Updated 2 years ago
- An automatic SQL Injection tool which takes advantage of ~DorkNet~ Googler, Ddgr, WhatWaf and sqlmap.☆271Updated 4 years ago
- DNS Rebinding Exploitation Framework☆488Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆254Updated 10 months ago
- Cloudflare DNS Enumeration Tool for Pentesters☆522Updated 2 years ago