Identifies vulnerabilities in network_security_config.xml, AndroidManifest.xml and if Firebase URL are accessible publicly
☆52Mar 12, 2023Updated 2 years ago
Alternatives and similar repositories for ScanAndroidXML
Users that are interested in ScanAndroidXML are comparing it to the libraries listed below
Sorting:
- List of custom Nuclei templates☆16Nov 4, 2023Updated 2 years ago
- File system enumerator and monitor for Android and Ubuntu.☆17Sep 25, 2021Updated 4 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Jun 12, 2022Updated 3 years ago
- ☆25Aug 19, 2024Updated last year
- parse ffuf & map endpoints to wordlists☆21Feb 25, 2021Updated 5 years ago
- One liner regex match to search inside JS files, using curl and grep!☆29Dec 26, 2021Updated 4 years ago
- Where's My Browser? Learn hacking WebViews (Android Mobile App)☆44Jul 31, 2018Updated 7 years ago
- Android Penetration Testing setup tool. Garuda automates the installation of the required tools to perform Android Security Analysis.☆73Sep 10, 2023Updated 2 years ago
- 基于Drozer对Android的四大组件进行批量处理☆22Jan 15, 2020Updated 6 years ago
- YARA detection rule for CVE-2024-4367 arbitrary javascript execution in PDF.js☆11May 27, 2024Updated last year
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago
- ☆10Jan 25, 2023Updated 3 years ago
- Various fuzzers written in Python. Currently has a TCP server for fuzzing client software, and a CLI fuzzer to use against programs ran f…☆11Feb 14, 2018Updated 8 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆25Feb 11, 2023Updated 3 years ago
- ☆27Mar 5, 2023Updated 2 years ago
- A Bash wrapper for radamsa that can be used to fuzz exported activities and deep links.☆52Aug 17, 2021Updated 4 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Feb 19, 2021Updated 5 years ago
- Burp Extender plugin that generates a sitemap of a website using Wayback Machine☆12Jun 18, 2018Updated 7 years ago
- A handy plugin for copying requests/responses directly from Burp, some extra magic included.☆13Oct 15, 2021Updated 4 years ago
- ☆10Dec 8, 2022Updated 3 years ago
- Recon scripts for bug hunting☆10Nov 19, 2021Updated 4 years ago
- Bug Bounty tool to automate the recon process.☆12Oct 4, 2023Updated 2 years ago
- ☆23Feb 13, 2026Updated 2 weeks ago
- ☆44Apr 30, 2021Updated 4 years ago
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆22Jun 28, 2024Updated last year
- Tool to get the top android apps for bug bounty purpose☆17Sep 10, 2020Updated 5 years ago
- AndroGoat☆327Nov 22, 2025Updated 3 months ago
- Some simple scripts that I use during bug bounty hunting in Android Apps☆28Jan 30, 2025Updated last year
- Extract Sensitive Keys, Secret, Token Or Interested thing from source☆52Jun 4, 2020Updated 5 years ago
- SendToXray - Burp Suite Extender, Send HTTP request to XRAY proxy.☆11May 22, 2021Updated 4 years ago
- Tool to hack Graphql☆15Oct 17, 2023Updated 2 years ago
- A collection of js analysis tools & scripts.☆19Updated this week
- bring your own clean ntdll (or other MS dlls)☆29Jul 14, 2025Updated 7 months ago
- Secrets detection based on regular expressions.☆22Apr 15, 2025Updated 10 months ago
- Framework for vulnerability fuzzing and reverse-engineering tool development.☆23Jul 25, 2023Updated 2 years ago
- WebDirScan is a tool for brute-forcing URIs (directories and files) on web servers by taking input directory to scan for files & director…☆11Mar 31, 2023Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆374Jul 25, 2023Updated 2 years ago
- Supertruder but better☆31Mar 10, 2023Updated 2 years ago
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆35Aug 30, 2022Updated 3 years ago