telekom-security / explo

Related projects ⓘ

Alternatives and complementary repositories for explo

• Damian89 / extended-xss-search
  A better version of my xssfinder tool - scans for different types of xss on a list of urls.
  ☆182Updated 5 years ago
• ZephrFish / GoogD0rker
  Note: Going through a full re-write of the tooling so the current versions in the repo do not work!
  ☆399Updated 4 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆253Updated 4 months ago
• 1N3 / Exploits
  Exploits by 1N3 @CrowdShield @xer0dayz @XeroSecurity
  ☆198Updated 3 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆303Updated 3 years ago
• mandatoryprogrammer / xsshunter_client
  Correlated injection proxy tool for XSS Hunter
  ☆249Updated last year
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆122Updated 7 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated last month
• awnumar / blind-sql-bitshifting
  A blind SQL injection module that uses bitshfting to calculate characters.
  ☆111Updated 2 years ago
• JohnTroony / Blisqy
  Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).
  ☆361Updated 5 years ago
• henshin / filebuster
  An extremely fast and flexible web fuzzer
  ☆212Updated last year
• 1N3 / MassBleed
  MassBleed SSL Vulnerability Scanner
  ☆240Updated 4 years ago
• JacobReynolds / ssrfDetector
  Server-side request forgery detector
  ☆149Updated 7 years ago
• khast3x / Offensive-Dockerfiles
  Offensive tools as Dockerfiles. Lightweight & Ready to go
  ☆201Updated 5 years ago
• 0xbharath / censys-enumeration
  A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys
  ☆151Updated last year
• 0xSearches / sandcastle
  🏰 A Python script for AWS S3 bucket enumeration.
  ☆139Updated last year
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆302Updated 6 years ago
• drego85 / JoomlaScan
  A free software to find the components installed in Joomla CMS, built out of the ashes of Joomscan.
  ☆215Updated last year
• woj-ciech / pepe
  Collect information about email addresses from Pastebin
  ☆35Updated 3 years ago
• craighays / bucketkicker
  Brute force AWS bucket finder
  ☆60Updated last year
• franccesco / getaltname
  Extract subdomains from SSL certificates in HTTPS sites.
  ☆369Updated this week
• EdOverflow / contact.sh
  An OSINT tool to find contacts in order to report security vulnerabilities.
  ☆267Updated 4 years ago
• tomdev / teh_s3_bucketeers
  ☆272Updated 3 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• lanmaster53 / sqli-exploiter
  Tool for exploiting SQL injection vulnerabilities that sqlmap can't find.
  ☆95Updated 6 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆131Updated last year
• chrispetrou / FDsploit
  File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.
  ☆266Updated 3 years ago
• wafpassproject / wafpass
  Analysing parameters with all payloads' bypass methods, aiming at benchmarking security solutions like WAF.
  ☆219Updated last year