swisskyrepo / Vulny-Code-Static-AnalysisLinks
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
☆414Updated 10 months ago
Alternatives and similar repositories for Vulny-Code-Static-Analysis
Users that are interested in Vulny-Code-Static-Analysis are comparing it to the libraries listed below
Sorting:
- Another web vulnerabilities scanner, this extension works on Chrome and Opera☆463Updated 6 years ago
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT☆404Updated this week
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆561Updated 3 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆361Updated 9 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆745Updated 2 years ago
- Open Redirect Payloads☆644Updated last year
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆561Updated 2 years ago
- Exploitation for XSS☆729Updated 4 years ago
- Repository for hosting my research papers☆510Updated last year
- Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).☆398Updated 6 years ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆272Updated 4 years ago
- HTTP file upload scanner for Burp Proxy☆416Updated 2 years ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆659Updated 6 years ago
- Payloads for CRLF Injection☆226Updated last year
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆457Updated 6 years ago
- A script to enumerate virtual hosts on a server.☆690Updated 7 years ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆335Updated 4 months ago
- Finds unknown classes of injection vulnerabilities☆707Updated 7 months ago
- Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…☆415Updated 5 years ago
- Correlated injection proxy tool for XSS Hunter☆258Updated 3 years ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆255Updated 2 years ago
- Search for Directory Traversal Vulnerabilities☆457Updated last week
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆448Updated 2 weeks ago
- Web App bug hunting☆577Updated last month
- A lists of words based on common web directory and file names lists of words based on common web directory and file names. These wordlist…☆237Updated 6 years ago
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆574Updated 3 years ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆451Updated 5 years ago
- Subdomain Takeover Scanner | Subdomain Takeover Tool | by 0x94☆366Updated 2 years ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆479Updated last year
- Bug Bounty Guide is a launchpad for bug bounty programs and bug bounty hunters.☆470Updated 3 years ago