A complete security assessment tool that supports common web security issues scanning and custom POC | Be sure to read the document before using.
☆20Sep 27, 2024Updated last year
Alternatives and similar repositories for xray-automation
Users that are interested in xray-automation are comparing it to the libraries listed below
Sorting:
- CoupDeWeb is an automated web vulnerability scanner designed for security researchers and developers. It scans for potential vulnerable …☆29Oct 17, 2024Updated last year
- Persistence techniques for windows.☆19Jun 26, 2023Updated 2 years ago
- Docker container for running CobaltStrike 4.10☆38Sep 18, 2024Updated last year
- Collection of templates from various resources☆43Dec 5, 2025Updated 3 months ago
- ☆28Feb 27, 2026Updated last week
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Feb 3, 2024Updated 2 years ago
- a repo for utilizing a base64 like encoding scheme + AES Encryption using Emojis☆13Mar 16, 2025Updated 11 months ago
- WP Juicer Tool for quick scanning of confidential information on WordPress endpoints.☆10Apr 30, 2024Updated last year
- ☆47May 31, 2024Updated last year
- A set of tasks for cracking implementations of smart-contracts with typical vulnerabilities.☆26Dec 2, 2025Updated 3 months ago
- Widget Options – The #1 WordPress Widget & Block Control Plugin <= 4.0.7 - Authenticated (Contributor+) Remote Code Execution☆13Dec 2, 2024Updated last year
- Burpsuite Extension for Jsmon☆22Feb 5, 2026Updated last month
- An advanced scanner for exposed secrets in web pages, APIs, and source code.☆13Apr 22, 2025Updated 10 months ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Aug 24, 2024Updated last year
- regex Hunter- Fast website endpoint sensitive data and Leaks JS files endpoint API Key Scraper☆12Jun 8, 2024Updated last year
- MalwareScan is a lightweight and fast malware scanner written in Python. It supports both Windows and Linux platforms and provides an ope…☆13Jun 2, 2025Updated 9 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆28Jul 21, 2024Updated last year
- Authentication Bypass Vulnerability — CVE-2024–4358 — Telerik Report Server 2024☆12Nov 26, 2024Updated last year
- ☆14Jun 12, 2025Updated 8 months ago
- ☆30Jan 16, 2026Updated last month
- Threat Hunt Investigation Methodology and Procedure☆15Jul 11, 2022Updated 3 years ago
- Many yaml scanner plugin parser [nuclei-template, xray-poc, ez-poc] - for Python☆13Mar 27, 2022Updated 3 years ago
- Advanced Hunting Queries☆20Feb 26, 2026Updated last week
- ☆41Mar 12, 2025Updated 11 months ago
- High-Performance JavaScript Security Scanner - Process 1M URLs in ~5 hours with Telegram & Discord bot integration, Docker support, and c…☆171Oct 18, 2025Updated 4 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Nov 22, 2024Updated last year
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- Nafeed-Broken-Link: A Python tool designed to check for broken social media links on a given domain. This script crawls all accessible pa…☆66Aug 15, 2024Updated last year
- Payload for bug bounty☆98Jul 7, 2024Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- Termux website scanner☆20Jun 21, 2021Updated 4 years ago
- A JavaScript Secret Finder tool.☆34Nov 3, 2025Updated 4 months ago
- Apache HugeGraph Server Unauthenticated RCE - CVE-2024-27348 Proof of concept Exploit☆18Jun 3, 2024Updated last year
- Simulate Windows EXE for Malware Research!☆19Sep 4, 2024Updated last year
- [Confluence] CVE-2023-22527 realworld poc☆19Jan 23, 2024Updated 2 years ago
- Pentest scriptkit for your copypasta☆14Feb 18, 2026Updated 2 weeks ago
- ☆63Aug 22, 2024Updated last year
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆78May 16, 2024Updated last year
- Multi-target unauthenticated RCE scanner for CVE-2025-34085 affecting WordPress Simple File List plugin. Uploads, renames, and triggers P…☆33Jul 13, 2025Updated 7 months ago