solo10010 / reconWTF
This tool is intended for bounty hunters, the script installs and launches the best set of tools for expanding the attack surface, for Web Sites, portals, and Organizations.
☆12Updated 4 months ago
Related projects: ⓘ
- Passively check for XSS character encodings☆20Updated last year
- ☆18Updated 10 months ago
- PathBuster - multiple hosts Web path scanner☆21Updated 3 months ago
- This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.☆13Updated 3 months ago
- XSS Finder Via SSTI☆54Updated last year
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆17Updated last year
- A simple utility to generate domain names with all possible TLDs☆23Updated last year
- ☆21Updated 2 years ago
- List of custom Nuclei templates☆15Updated 10 months ago
- ☆13Updated last year
- Automate bug bounty recon using bash alias☆14Updated last month
- This tool allows you to find ssti vulnerability with ease!☆17Updated 2 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 3 years ago
- JaelesFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications☆11Updated 4 months ago
- ☆16Updated this week
- Find CVEs that don't have a Detectify modules.☆21Updated last year
- Scan Wordpress Servers for Access Control Issues☆10Updated last year
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated last year
- Generating Sub-Sub-Subdomain + validating all of them☆9Updated last year
- xsschecker tool checking reflected endpoints finding possible xss vulnerable endpoints.☆19Updated last month
- A solid recon tool I use personally.☆31Updated last year
- Xss payload for bypassing waf☆13Updated 4 years ago
- ☆21Updated last year
- ☆19Updated 3 years ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Updated 3 years ago
- Collection of templates from various resources☆18Updated 2 months ago
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 2 years ago
- Brute Force subdomains with a list of custom DNS records.☆13Updated last year
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆20Updated 5 months ago
- ☆24Updated this week