sepulvedazallalinux / XSS-Freak
XSS-Freak is an xss scanner fully written in python3 from scratch. it is one of its kind since it crawls the website for all possible links and directories to expand its attack scope. then it searches them for inputs tags and then launches a bunch of xss payloads. if an inputs is not sanitized and vulnerable to xss attacks, the tool will discov…
☆13Updated 5 years ago
Alternatives and similar repositories for XSS-Freak:
Users that are interested in XSS-Freak are comparing it to the libraries listed below
- Bing Dork Scanner and simple sqli-injection checker☆16Updated 6 years ago
- Spaghetti - Web Application Security Scanner☆19Updated 7 years ago
- Repository of wordlists and dictionaries for fuzzing and bruteforcing☆10Updated 4 years ago
- Better Google Dorking with Dorker.☆33Updated 2 years ago
- This Tool is for web penetration Testing.☆19Updated 4 years ago
- ORhunter is an Open Redirect Vulnerability Scanner which Passively Crawls URLs from 3 Sources & Then Filter Potential URLs based on Param…☆40Updated last year
- Fast subdomains enumeration tool for penetration testers☆15Updated 5 years ago
- Python based Web Scraper which can discover JavaScript files and parse them for juicy information (API keys, IP's, Hidden Paths etc)☆14Updated 3 years ago
- Simple and fast web fuzzer written in python☆11Updated 4 years ago
- Ragno is a Passive URL Crawler | Written in Python3 | Fetches URLs from the Wayback Machine, AlienVault's Open Threat Exchange & Common C…☆23Updated last year
- It finds Subject Alternative Names for a given list of domains☆8Updated 3 years ago
- Multithreaded Host Header Redirection Scanner☆13Updated 4 years ago
- a shell script aim to automatically launch 50+ online web scanning tools in the Browsaer against a target domain in a 10 waves☆63Updated 5 years ago
- Rockyou for web fuzzing☆14Updated 3 years ago
- Simple Webshell for Hackers☆9Updated 3 years ago
- E-mails, subdomains and names Harvester - OSINT☆10Updated 5 years ago
- Fetch & Filter Known URLs☆15Updated 2 years ago
- Bypass 4xx HTTP response status codes and more. Based on PycURL.☆15Updated 2 years ago
- This bash script tool, will perform advanced subdomain enumeration, save the results, it will then probe the subdomains into urls, save t…☆25Updated 8 months ago
- Brute List is an updated word list for brute-forcing the assets. This is not like a normal outdated word list. I have collected several l…☆33Updated 3 years ago
- Hackfruit is an easy search tool that finds hacking tools, commands and cheat sheets. It helps cybersecurity learing and trainings, CTFs,…☆21Updated 2 years ago
- Lab Website For Practicing Different Types of SQL Injection Vulnerabilities☆20Updated last year
- Passive Reconnaissance Techniques Approach helps for penetration testing and bug bounty hunting by gathering information about a target s…☆14Updated last month
- This repo is just a guide where you can find all labs of burp suite resolved, you can see the workflow and all type of web attacks☆13Updated 3 years ago
- Personal Collection of Awesome Google Dorks☆30Updated 5 years ago
- Burp Suite extension for extracting metadata from files☆20Updated 4 years ago
- A bash script that automates the process of service discovery on specified target hosts. The aim of the scripts is reducing scan time, in…☆13Updated 5 months ago
- Updated 6000 Sql Injection Google Dork 2021☆37Updated 3 years ago
- Intelligence gathering framework☆14Updated 9 years ago
- steal cookies from website using xss☆13Updated 5 years ago