shiblisec / Kyubi
A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidden files and directories.
☆119Updated last year
Alternatives and similar repositories for Kyubi:
Users that are interested in Kyubi are comparing it to the libraries listed below
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆160Updated 10 months ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆53Updated 4 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- ☆52Updated 2 years ago
- HTTP verb tampering & methods enumeration☆56Updated 2 years ago
- Enumerate Subdomains Through Google Dorks☆123Updated 3 years ago
- Find subdomains on GitLab.☆92Updated 9 months ago
- ☆72Updated 9 months ago
- A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…☆109Updated this week
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆88Updated 2 years ago
- Given a list of domains, you resolve them and get the IP addresses.☆48Updated 2 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆104Updated 2 years ago
- Describe how to use ffuf different options with examples☆84Updated 2 years ago
- Execute Trickest workflows right from your terminal☆87Updated last month
- Apache Tomcat exploit and Pentesting guide for penetration tester☆57Updated 2 years ago
- CVE-2023-32243 - Essential Addons for Elementor 5.4.0-5.7.1 - Unauthenticated Privilege Escalation☆84Updated last year
- ☆68Updated last year
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 2 years ago
- simple recon tool to help you for searching vulnerability on web server☆73Updated last month
- DNS resolution tracing tool☆34Updated 3 years ago
- Monitoring the Cloud Landscape☆78Updated this week
- My useful files for penetration tests, security assessments, bug bounty and other security related stuff☆156Updated this week
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆126Updated 2 years ago
- ☆70Updated 2 years ago
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆40Updated 3 years ago
- A reverse whois tool based on Whoxy API.☆162Updated 10 months ago
- Streamline your recon and vulnerability detection process with SCRIPTKIDDI3, A recon and initial vulnerability detection tool built using…☆149Updated last year
- Striping CDN IPs from a list of IP Addresses☆75Updated 2 years ago