swisskyrepo / Vulny-Code-Static-AnalysisLinks
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
☆412Updated 8 months ago
Alternatives and similar repositories for Vulny-Code-Static-Analysis
Users that are interested in Vulny-Code-Static-Analysis are comparing it to the libraries listed below
Sorting:
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆402Updated 6 months ago
- Another web vulnerabilities scanner, this extension works on Chrome and Opera☆461Updated 6 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆560Updated 3 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆740Updated 2 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆553Updated 2 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆356Updated 7 months ago
- Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).☆394Updated 6 years ago
- Finds unknown classes of injection vulnerabilities☆703Updated 6 months ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆365Updated 2 years ago
- HTTP file upload scanner for Burp Proxy☆415Updated 2 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆273Updated 4 years ago
- Payloads for CRLF Injection☆225Updated last year
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆565Updated 3 years ago
- Open Redirect Payloads☆638Updated last year
- Correlated injection proxy tool for XSS Hunter☆257Updated 2 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆657Updated 6 years ago
- Search for Directory Traversal Vulnerabilities☆455Updated 3 months ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆255Updated 2 years ago
- Drupal enumeration & exploitation tool☆609Updated 4 years ago
- Content discovery wordlists generated using BigQuery☆576Updated 5 years ago
- ☆266Updated 6 years ago
- A script to enumerate virtual hosts on a server.☆692Updated 7 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆325Updated 4 years ago
- A lists of words based on common web directory and file names lists of words based on common web directory and file names. These wordlist…☆236Updated 6 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆539Updated 7 years ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆334Updated 2 months ago
- Exploitation for XSS☆724Updated 4 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆292Updated 6 years ago
- kadimus is a tool to check and exploit lfi vulnerability.☆551Updated 5 years ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆459Updated 6 years ago