Web application security scanner created by lcamtuf for google - Unofficial Mirror
☆864Feb 18, 2023Updated 3 years ago
Alternatives and similar repositories for skipfish
Users that are interested in skipfish are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,882Feb 22, 2023Updated 3 years ago
- Nikto web server scanner☆10,456Updated this week
- Web Application Security Scanner Framework☆4,030Apr 22, 2026Updated last month
- Web application fuzzer☆6,514Jan 21, 2026Updated 4 months ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,190Sep 11, 2024Updated last year
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.☆3,892May 20, 2025Updated last year
- A Tool for Domain Flyovers☆5,940May 22, 2022Updated 4 years ago
- Automated NoSQL database enumeration and web application exploitation tool.☆3,298Feb 20, 2026Updated 3 months ago
- Knock Subdomain Scan☆4,163Feb 19, 2026Updated 4 months ago
- A DNS meta-query spider that enumerates DNS records, and subdomains.☆3,513Jan 13, 2022Updated 4 years ago
- htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.☆628Oct 11, 2021Updated 4 years ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,872Jun 15, 2020Updated 6 years ago
- Network Infrastructure Penetration Testing Tool☆1,669Jun 2, 2021Updated 5 years ago
- Fast subdomains enumeration tool for penetration testers☆10,957Aug 2, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A plugin-based scanner that aids security researchers in identifying issues with several CMSs, mainly Drupal & Silverstripe.☆1,431Jan 19, 2024Updated 2 years ago
- Automated All-in-One OS Command Injection Exploitation Tool☆5,757Updated this week
- Next generation web scanner☆6,651Apr 2, 2026Updated 2 months ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,448Sep 17, 2024Updated last year
- DNS Enumeration Script☆3,032Updated this week
- Automated penetration testing & attack surface management platform. Recon, scan, exploit, report — 600+ exploits, 90+ integrations, 10K+ …☆10,191Jun 6, 2026Updated last week
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,748Jan 5, 2026Updated 5 months ago
- SMBMap is a handy SMB enumeration tool☆2,040Jan 6, 2026Updated 5 months ago
- Automatic SQL injection and database takeover tool☆37,651Jun 12, 2026Updated last week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework.☆545Jun 7, 2020Updated 6 years ago
- Reconnaissance tool for GitHub organizations☆6,184Sep 20, 2022Updated 3 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,943Apr 13, 2022Updated 4 years ago
- Most advanced XSS scanner.☆15,027Apr 26, 2025Updated last year
- Subgraph Vega☆365Feb 23, 2021Updated 5 years ago
- Empire is a PowerShell and Python post-exploitation agent.☆7,841Jan 19, 2020Updated 6 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,611Apr 15, 2026Updated 2 months ago
- A DNS reconnaissance tool for locating non-contiguous IP space.☆1,791Aug 28, 2024Updated last year
- Veil 3.1.X (Check version info in Veil at runtime)☆4,221Oct 9, 2023Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.☆8,929Nov 10, 2023Updated 2 years ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,940May 9, 2026Updated last month
- kadimus is a tool to check and exploit lfi vulnerability.☆572Aug 17, 2020Updated 5 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,755Dec 1, 2024Updated last year
- A swiss army knife for pentesting networks☆9,140Dec 6, 2023Updated 2 years ago
- Open Source Vulnerability Management Platform☆6,520Jun 11, 2026Updated last week
- WPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websit…☆9,628Jun 12, 2026Updated last week