Alternatives and similar repositories for XXRF-Shots

Users that are interested in XXRF-Shots are comparing it to the libraries listed below

• dreadlocked / SSRFmap

  View on GitHub
  Simple Server Side Request Forgery services enumeration tool.
  ☆56Aug 23, 2018Updated 7 years ago
• ettic-team / EndpointFinder-Burp

  View on GitHub
  ☆32May 30, 2019Updated 6 years ago
• RUB-NDS / Metadata-Attacker

  View on GitHub
  A tool to generate media files with malicious metadata
  ☆129Feb 2, 2019Updated 7 years ago
• righettod / virtualhost-payload-generator

  View on GitHub
  BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…
  ☆60Oct 8, 2017Updated 8 years ago
• matt- / CVE-2018-15685

  View on GitHub
  POC for CVE-2018-15685
  ☆42Aug 24, 2018Updated 7 years ago
• e3prom / bst

  View on GitHub
  Binary String Toolkit (BST). Quickly and easily convert binary strings for all your exploit development needs.
  ☆23Jul 27, 2018Updated 7 years ago
• smirnovvad / rbuster

  View on GitHub
  yet another dirbuster
  ☆18Jan 14, 2021Updated 5 years ago
• zpettry / boxer

  View on GitHub
  Boxer: A fast directory bruteforce tool written in Python with concurrency.
  ☆14Feb 26, 2021Updated 4 years ago
• thehappydinoa / TP-Link-defaults

  View on GitHub
  Python script for trying default passwords for some TP-Link Hotspots
  ☆35Apr 29, 2021Updated 4 years ago
• Andromeda1957 / netpwn

  View on GitHub
  Tool made to automate tasks of pentesting.
  ☆165Oct 26, 2019Updated 6 years ago
• safebuffer / metateta

  View on GitHub
  Metateta Automated Tool For Scanning And Exploiting Network Protocols Using Metasploit
  ☆84Jul 2, 2018Updated 7 years ago
• devploit / put2win

  View on GitHub
  Script to automate PUT HTTP method exploitation to get shell
  ☆125Jun 25, 2020Updated 5 years ago
• shirosaidev / sharesniffer

  View on GitHub
  Network share sniffer and auto-mounter for crawling remote file systems
  ☆212Mar 27, 2022Updated 3 years ago
• itsmehacker / Ducky-Exploit

  View on GitHub
  Arduino Rubber Ducky Framework
  ☆107Apr 29, 2019Updated 6 years ago
• samhaxr / TakeOver-v1

  View on GitHub
  Takeover script extracts CNAME record of all subdomains at once. TakeOver saves researcher time and increase the chance of finding subdom…
  ☆102Apr 7, 2023Updated 2 years ago
• anthemtotheego / SharpSploitConsole

  View on GitHub
  ☆182Feb 21, 2022Updated 3 years ago
• wish-i-was / femida

  View on GitHub
  Automated blind-xss search for Burp Suite
  ☆287Oct 10, 2019Updated 6 years ago
• chrisallenlane / novahot

  View on GitHub
  A webshell framework for penetration testers.
  ☆300Aug 10, 2025Updated 6 months ago
• MostafaSoliman / CVE-2017-6079-Blind-Command-Injection-In-Edgewater-Edgemarc-Devices-Exploit

  View on GitHub
  ☆18Sep 22, 2018Updated 7 years ago
• quickbreach / SMBetray

  View on GitHub
  SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…
  ☆383Aug 17, 2018Updated 7 years ago
• VoidSec / CVE-2019-5624

  View on GitHub
  A proof of concept for Metasploit's CVE-2019-5624 vulnerability (Rubyzip insecure ZIP handling RCE)
  ☆13May 2, 2019Updated 6 years ago
• mattrotlevi / InDigger

  View on GitHub
  A LinkedIn Scraper
  ☆15Aug 20, 2018Updated 7 years ago
• irsl / struts-any-results

  View on GitHub
  Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.
  ☆12Sep 30, 2018Updated 7 years ago
• balaganeshcyber / Emailspoofing

  View on GitHub
  ☆12Dec 26, 2022Updated 3 years ago
• wdahlenburg / LogicalFuzzingEngine

  View on GitHub
  A Burpsuite extension written in Python to perform basic validation fuzzing
  ☆11Oct 7, 2022Updated 3 years ago
• joda32 / CertCrunchy

  View on GitHub
  Just a silly recon tool that uses data from SSL Certificates to find potential host names
  ☆29May 22, 2023Updated 2 years ago
• xw77cve / CVE-2019-7642

  View on GitHub
  ☆16Mar 4, 2019Updated 6 years ago
• rwincey / nmap

  View on GitHub
  Nmap - the Network Mapper. Github mirror of official SVN repository.
  ☆15Sep 25, 2019Updated 6 years ago
• KINGSABRI / chkdfront

  View on GitHub
  Check Domain Fronting (chkdfront) - It checks if your domain fronting is working
  ☆44Jun 26, 2021Updated 4 years ago
• GDSSecurity / Whitepapers

  View on GitHub
  A collection of publicly released whitepapers
  ☆49Sep 1, 2017Updated 8 years ago
• cornerpirate / java-stager

  View on GitHub
  A PoC Java Stager which can download, compile, and execute a Java file in memory.
  ☆108Aug 6, 2018Updated 7 years ago
• RhinoSecurityLabs / SleuthQL

  View on GitHub
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆470Nov 14, 2019Updated 6 years ago
• random-robbie / Jira-Scan

  View on GitHub
  CVE-2017-9506 - SSRF
  ☆190Feb 14, 2022Updated 4 years ago
• Regala / burp-subdomains

  View on GitHub
  Burp Suite extension to easily export sub domains
  ☆44Nov 29, 2019Updated 6 years ago
• gabemarshall / microctfs

  View on GitHub
  Small CTF challenges running on Docker
  ☆158Jul 26, 2018Updated 7 years ago
• phage-nz / ph0neutria

  View on GitHub
  ph0neutria is a malware zoo builder that sources samples straight from the wild. Everything is stored in Viper for ease of access and man…
  ☆302Apr 24, 2020Updated 5 years ago
• sirpsycho / firecall

  View on GitHub
  Automate SSH communication with firewalls, switches, etc.
  ☆27Mar 29, 2018Updated 7 years ago
• RUB-NDS / SAML-XXE-Test

  View on GitHub
  Simple XXE test suite generated specifically for SAML interfaces
  ☆22May 18, 2018Updated 7 years ago
• zux0x3a / 0xsp-Mongoose

  View on GitHub
  a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations…
  ☆538Mar 27, 2022Updated 3 years ago