swisskyrepo / Vulny-Code-Static-AnalysisLinks
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
☆415Updated 10 months ago
Alternatives and similar repositories for Vulny-Code-Static-Analysis
Users that are interested in Vulny-Code-Static-Analysis are comparing it to the libraries listed below
Sorting:
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆404Updated 2 weeks ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆361Updated 10 months ago
- Another web vulnerabilities scanner, this extension works on Chrome and Opera☆465Updated 6 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆562Updated 3 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆272Updated 4 years ago
- HTTP file upload scanner for Burp Proxy☆416Updated 2 years ago
- Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).☆403Updated 6 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆563Updated 2 years ago
- Payloads for CRLF Injection☆226Updated last year
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆660Updated 6 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆746Updated 2 years ago
- Repository for hosting my research papers☆510Updated last year
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆256Updated 2 years ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆295Updated 6 years ago
- Open Redirect Payloads☆647Updated last year
- Correlated injection proxy tool for XSS Hunter☆259Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆451Updated 5 years ago
- Security tool to find potential vulnerable Server Side Request Forgery (SSRF) parameters.☆345Updated last week
- simple script to extract all web resources by means of .SVN folder exposed over network.☆479Updated last year
- Lesser Known Web Attack Lab☆330Updated 5 years ago
- Bugbounty scope tool☆332Updated 10 months ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆415Updated 5 years ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆366Updated 2 years ago
- A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-s…☆441Updated 4 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆325Updated 4 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆543Updated 7 years ago
- A script to enumerate virtual hosts on a server.☆688Updated 8 years ago
- Drupal enumeration & exploitation tool☆616Updated 5 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆292Updated 6 years ago
- Simple shell script for automated domain recognition with some tools☆304Updated 5 years ago