Web application security scanner created by lcamtuf for google - Unofficial Mirror
☆866Feb 18, 2023Updated 3 years ago
Alternatives and similar repositories for skipfish
Users that are interested in skipfish are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,892Feb 22, 2023Updated 3 years ago
- Nikto web server scanner☆10,516Updated this week
- Web Application Security Scanner Framework☆4,032Apr 22, 2026Updated 2 months ago
- Web application fuzzer☆6,535Jan 21, 2026Updated 5 months ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,190Sep 11, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A Tool for Domain Flyovers☆5,947May 22, 2022Updated 4 years ago
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,901May 20, 2025Updated last year
- Automated NoSQL database enumeration and web application exploitation tool.☆3,311Feb 20, 2026Updated 4 months ago
- Knock Subdomain Scan☆4,168Feb 19, 2026Updated 4 months ago
- A DNS meta-query spider that enumerates DNS records, and subdomains.☆3,519Jan 13, 2022Updated 4 years ago
- htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.☆628Oct 11, 2021Updated 4 years ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,879Jun 15, 2020Updated 6 years ago
- Network Infrastructure Penetration Testing Tool☆1,667Jun 2, 2021Updated 5 years ago
- Fast subdomains enumeration tool for penetration testers☆10,974Aug 2, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.☆1,435Jan 19, 2024Updated 2 years ago
- Automated All-in-One OS Command Injection Exploitation Tool☆5,773Updated this week
- Next generation web scanner☆6,695Apr 2, 2026Updated 3 months ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,453Sep 17, 2024Updated last year
- DNS Enumeration Script☆3,040Updated this week
- Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ …☆10,280Updated this week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,776Jan 5, 2026Updated 6 months ago
- SMBMap is a handy SMB enumeration tool☆2,047Jan 6, 2026Updated 6 months ago
- Automatic SQL injection and database takeover tool☆37,794Updated this week
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.☆547Jun 7, 2020Updated 6 years ago
- Reconnaissance tool for GitHub organizations☆6,189Sep 20, 2022Updated 3 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,947Apr 13, 2022Updated 4 years ago
- Most advanced XSS scanner.☆15,063Apr 26, 2025Updated last year
- Subgraph Vega☆364Feb 23, 2021Updated 5 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,850Jan 19, 2020Updated 6 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,618Apr 15, 2026Updated 2 months ago
- A DNS reconnaissance tool for locating non-contiguous IP space.☆1,797Aug 28, 2024Updated last year
- Veil 3.1.X (Check version info in Veil at runtime)☆4,218Oct 9, 2023Updated 2 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,947Nov 10, 2023Updated 2 years ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,946May 9, 2026Updated 2 months ago
- kadimus is a tool to check and exploit lfi vulnerability.☆575Aug 17, 2020Updated 5 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,769Dec 1, 2024Updated last year
- A swiss army knife for pentesting networks☆9,148Dec 6, 2023Updated 2 years ago
- Open Source Vulnerability Management Platform☆6,639Jun 23, 2026Updated 2 weeks ago
- WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…☆9,672Updated this week