stealthcopter / wordpress-hackingLinks
A collection of useful resources for hacking WordPress and it's plugins and themes
☆80Updated this week
Alternatives and similar repositories for wordpress-hacking
Users that are interested in wordpress-hacking are comparing it to the libraries listed below
Sorting:
- This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer whil…☆64Updated 9 months ago
- Automate Recon XSS Bug Bounty☆178Updated 2 weeks ago
- ☆78Updated 8 months ago
- ☆101Updated 10 months ago
- ☆61Updated last year
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆88Updated 7 months ago
- Gather results of dorks across a number of search engines☆198Updated 2 weeks ago
- WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a…☆116Updated 2 weeks ago
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆190Updated 10 months ago
- A Powerful Recon Engine☆68Updated last year
- Script that automates the installation of the main tools used for web application penetration testing and Bug Bounty.☆228Updated last year
- 403Bypasser is a simple plugin that lets you bypass 403 status code by transforming HTTP requests with custom templates.☆97Updated last week
- Python for AWAE (Advanced Web Attacks and Exploitation)☆101Updated 2 years ago
- ☆228Updated 10 months ago
- ☆177Updated last year
- Automated Tool for Testing Header Based Blind SQL Injection☆322Updated 2 years ago
- Scripts to download every Wordpress plugin (updated in the last 2 years) and run Semgrep over the lot of it while storing output in a dat…☆89Updated 11 months ago
- ☆124Updated 5 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆191Updated 2 weeks ago
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆182Updated 11 months ago
- Automation of tokens/api keys testing.☆149Updated 2 years ago
- Helios: Automated XSS Testing☆158Updated last year
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆218Updated 4 months ago
- ☆167Updated last year
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 7 months ago
- ☆88Updated 4 months ago
- bring shodan facets into your terminal without API key.☆96Updated 3 months ago
- A passive way to find backups/ sensitive information.☆87Updated 6 months ago
- ☆179Updated 5 months ago
- ☆24Updated 3 years ago