secdec / xssmapLinks
Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities
☆150Updated 3 years ago
Alternatives and similar repositories for xssmap
Users that are interested in xssmap are comparing it to the libraries listed below
Sorting:
- ☆198Updated 6 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆272Updated 4 years ago
- CRLF and open redirect fuzzer☆112Updated 4 years ago
- Command line tool for testing CRLF injection on a list of domains.☆165Updated last year
- a .js scanner, built in php. designed to scrape urls and other info☆226Updated 8 years ago
- Payloads for CRLF Injection☆226Updated last year
- You can read the writeup on this script here☆274Updated 5 years ago
- Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.☆149Updated 5 years ago
- A script that can resolve an input file of domains and scan them with masscan☆155Updated 5 years ago
- XSS Payload without Anything.☆104Updated 6 years ago
- Reconnaissance tool which scans javascript files for subdomains and then iterates over all javascript files hosted on subsequent subdomai…☆223Updated 5 years ago
- My Recon Automation☆194Updated 4 years ago
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆188Updated 6 years ago
- GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…☆205Updated 2 years ago
- You can read the writeup on this script here☆192Updated 4 years ago
- Cross Origin Resource Sharing MisConfiguration Scanner☆174Updated 4 years ago
- The project contains multiple shell scripts for automating the tasks during recon.☆175Updated 2 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 4 years ago
- Various Payload wordlists☆239Updated 8 months ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆292Updated 6 years ago
- Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…☆247Updated 5 years ago
- X-Forwarded-For [403 forbidden] enumeration☆96Updated last year
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆154Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆216Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆171Updated 5 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆115Updated last week
- Finds the End-Points in JavaScript files☆97Updated 4 years ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆335Updated 4 months ago
- List of domains in scope for bug bounties (HackerOne, Bugcrowd, etc.)☆74Updated 4 years ago
- A lists of words based on common web directory and file names lists of words based on common web directory and file names. These wordlist…☆237Updated 6 years ago