telekom-security / explo
Human and machine readable web vulnerability testing format
☆181Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for explo
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.☆182Updated 5 years ago
- Note: Going through a full re-write of the tooling so the current versions in the repo do not work!☆399Updated 4 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆253Updated 4 months ago
- Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity☆198Updated 3 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆303Updated 3 years ago
- Correlated injection proxy tool for XSS Hunter☆249Updated last year
- Local File Inclusion Exploitation Tool (mirror)☆122Updated 7 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated last month
- A blind SQL injection module that uses bitshfting to calculate characters.☆111Updated 2 years ago
- Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).☆361Updated 5 years ago
- An extremely fast and flexible web fuzzer☆212Updated last year
- MassBleed SSL Vulnerability Scanner☆240Updated 4 years ago
- Server-side request forgery detector☆149Updated 7 years ago
- Offensive tools as Dockerfiles. Lightweight & Ready to go☆201Updated 5 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆151Updated last year
- 🏰 A Python script for AWS S3 bucket enumeration.☆139Updated last year
- Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]☆302Updated 6 years ago
- A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.☆215Updated last year
- Collect information about email addresses from Pastebin☆35Updated 3 years ago
- Brute force AWS bucket finder☆60Updated last year
- Extract subdomains from SSL certificates in HTTPS sites.☆369Updated this week
- An OSINT tool to find contacts in order to report security vulnerabilities.☆267Updated 4 years ago
- ☆272Updated 3 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- Tool for exploiting SQL injection vulnerabilities that sqlmap can't find.☆95Updated 6 years ago
- A tool to hunt for publicly accessible DigitalOcean Spaces☆154Updated 4 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆131Updated last year
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆266Updated 3 years ago
- Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.☆219Updated last year