secdec / xssmap
Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
☆145Updated last year
Related projects: ⓘ
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆263Updated 3 years ago
- ☆184Updated 5 years ago
- CRLF and open redirect fuzzer☆108Updated 3 years ago
- My Recon Automation☆194Updated 3 years ago
- Trying to make automated recon for bug bounties☆249Updated 3 years ago
- Payloads for CRLF Injection☆210Updated 2 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆203Updated 7 years ago
- Web Application recon automation☆123Updated 3 years ago
- A script that can resolve an input file of domains and scan them with masscan☆155Updated 4 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆171Updated last year
- Simple shell script for automated domain recognition with some tools☆298Updated 3 years ago
- Python based scanner to find potential SSRF parameters☆282Updated 5 months ago
- Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…☆204Updated 4 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆198Updated last year
- You can read the writeup on this script here☆192Updated 2 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆168Updated 2 years ago
- Command line tool for testing CRLF injection on a list of domains.☆150Updated 5 months ago
- SSRF testing tool☆242Updated last year
- ☆126Updated this week
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆275Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆166Updated 3 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆210Updated 2 years ago
- Various Payload wordlists☆233Updated 4 years ago
- ☆129Updated this week
- ☆51Updated last year
- ☆187Updated this week
- ☆231Updated 6 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆221Updated 4 years ago
- ☆221Updated 3 months ago
- A permutation generation tool written in golang☆206Updated 5 years ago