swoops / eval_villain
A Firefox Web Extension to improve the discovery of DOM XSS.
☆271Updated 4 months ago
Alternatives and similar repositories for eval_villain:
Users that are interested in eval_villain are comparing it to the libraries listed below
- Burp extension to create target specific and tailored wordlist from burp history.☆237Updated 3 years ago
- Secret and/or credential patterns used for gf.☆240Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆307Updated 4 months ago
- Unofficial documentation for the great tool Param Miner☆178Updated 2 years ago
- List of fresh DNS resolvers updated daily☆109Updated 2 years ago
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆229Updated 3 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆352Updated 4 years ago
- IIS shortname scanner written in Go☆324Updated 2 years ago
- Rust-based high performance domain permutation generator.☆285Updated last year
- ☆152Updated 2 years ago
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- Prototype pollution scanner using headless chrome☆216Updated 2 years ago
- Burpsuite plugin for Interact.sh☆216Updated 9 months ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆286Updated last week
- A fast and minimal JS endpoint extractor☆341Updated 4 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆496Updated 2 weeks ago
- 🐙 Cross-document messaging security research tool powered by https://enso.security☆287Updated last year
- Turbo Intruder Scripts☆222Updated 4 years ago
- Customisable and automated HTTP header injection☆243Updated 9 months ago
- Nuclei templates written by us.☆267Updated 3 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆243Updated 7 months ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆208Updated 9 months ago
- ☆287Updated 2 years ago
- Get related domains / subdomains by looking at Google Analytics IDs☆243Updated 2 years ago
- A reverse whois tool based on Whoxy API.☆164Updated 11 months ago
- De-clutter a list of URLs☆328Updated 4 months ago
- List of reporting templates I have used since I started doing BBH.☆286Updated 6 months ago
- Useful "Match and Replace" burpsuite rules☆342Updated last year
- ☆402Updated 3 years ago