shiblisec / KyubiLinks
A tool to discover and exploit Nginx alias traversal misconfiguration, the tool can bruteforce the URL path recursively to find out hidden files and directories.
☆124Updated last year
Alternatives and similar repositories for Kyubi
Users that are interested in Kyubi are comparing it to the libraries listed below
Sorting:
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆162Updated last year
- A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…☆113Updated 2 weeks ago
- Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API☆92Updated 2 years ago
- HTTP verb tampering & methods enumeration☆62Updated 3 weeks ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 3 years ago
- Find sensitive information using dorks from different search-engines.☆90Updated 10 months ago
- Python script implementing the favicon hash trick to find subdomains.☆37Updated 2 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆121Updated 3 years ago
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆130Updated 3 years ago
- Rapidly enumerate subdomains and domains using rapiddns.io.☆79Updated 3 years ago
- Execute Trickest workflows right from your terminal☆93Updated last week
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 3 months ago
- A wrapper around tools used for subdomain enumeration, to automate the workflow, on a given domain, written in bash.☆80Updated 3 years ago
- DNS resolution tracing tool☆34Updated 4 years ago
- Monitoring the Cloud Landscape☆87Updated this week
- Find related domains of a given domain.☆101Updated 2 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- simple recon tool to help you for searching vulnerability on web server☆74Updated 6 months ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆35Updated last year
- Serpscan is a powerfull php script designed to allow you to leverage the power of dorking straight from the comfort of your command line.☆66Updated 4 years ago
- Returns results from Google search.☆50Updated 2 years ago
- Checks whether a domain is hosted on a cloud service such as AWS, Azure or CloudFlare☆59Updated 2 years ago
- Sub-Domain TakeOver Vulnerability Scanner (edoardottt fork)☆68Updated 7 months ago
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆163Updated 2 years ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆59Updated 4 years ago
- My personal collection of nuclei templates made for fuzzing.☆28Updated 11 months ago
- ☆56Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆56Updated 3 years ago
- ☆74Updated last year