JSshell - JavaScript reverse/remote shell
☆631Dec 20, 2022Updated 3 years ago
Alternatives and similar repositories for JSshell
Users that are interested in JSshell are comparing it to the libraries listed below
Sorting:
- Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware☆602Aug 27, 2024Updated last year
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆802Jul 4, 2023Updated 2 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,489Sep 4, 2025Updated 5 months ago
- A fast tool to scan CRLF vulnerability written in Go☆1,519Feb 23, 2026Updated last week
- Post-Exploitation module for Penetration Tester and Hackers.☆27Dec 29, 2021Updated 4 years ago
- ScanT3r - Module based Bug Bounty Automation Tool ( use Lotus instead github.com/bugBlocker/lotus )☆686Feb 22, 2026Updated last week
- Quick SQLMap Tamper Suggester☆1,397Jul 18, 2022Updated 3 years ago
- Windows Exploit Suggester - Next Generation☆4,766Updated this week
- 🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.☆4,859Updated this week
- A fast DOM based XSS vulnerability scanner with simplicity.☆855Sep 30, 2022Updated 3 years ago
- The Swiss Army knife for automated Web Application Testing☆2,323May 8, 2024Updated last year
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆2,392May 26, 2024Updated last year
- Automation for javascript recon in bug bounty.☆1,069Sep 9, 2023Updated 2 years ago
- Tool to help exploit XXE vulnerabilities☆592Feb 4, 2023Updated 3 years ago
- Self-developed tools for Lateral Movement/Code Execution☆718Aug 17, 2021Updated 4 years ago
- A python script that finds endpoints in JavaScript files☆4,294Apr 13, 2024Updated last year
- Credentials gathering tool automating remote procdump and parse of lsass process.☆782Jun 20, 2020Updated 5 years ago
- Burpsuite Extension to bypass 403 restricted directory☆1,673Jun 29, 2023Updated 2 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.☆2,244Jan 8, 2026Updated last month
- 🔱 Powerfull XSS Scanning and Parameter analysis tool&gem☆1,357Updated this week
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆417Nov 24, 2020Updated 5 years ago
- A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for att…☆5,775Updated this week
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆991Oct 7, 2022Updated 3 years ago
- Fast DNS history enumeration tool for network and OSINT investigations☆17Dec 6, 2020Updated 5 years ago
- 🦁 Python project to identify and scan for vulnerabilities related to the Joomla CMS project. It scans for common misconfigurations and p…☆172May 2, 2024Updated last year
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,914Apr 13, 2022Updated 3 years ago
- HTTP parameter discovery suite.☆6,091Feb 20, 2025Updated last year
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆270Aug 20, 2020Updated 5 years ago
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆6,389May 1, 2025Updated 10 months ago
- A fuzzer for detecting open redirect vulnerabilities☆782Jul 1, 2024Updated last year
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆970Dec 8, 2021Updated 4 years ago
- [POC] Asynchronous reverse shell using the HTTP protocol.☆273May 23, 2025Updated 9 months ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆518Jun 22, 2022Updated 3 years ago
- A tool to check a bunch of URLs that contain reflecting params.☆598Aug 4, 2024Updated last year
- Python AV Evasion Tools☆520Oct 14, 2025Updated 4 months ago
- Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hu…☆2,339Jun 27, 2024Updated last year
- Gospider - Fast web spider written in Go☆2,877Apr 21, 2024Updated last year
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,041Jul 10, 2022Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.☆4,837Jan 1, 2025Updated last year