th3hack3rwiz / Lazy-FuzzZ
Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the false positives we obtain in those results. To solve this problem I created Lazy FuzzZ. It fuzzes all those urls, removes all false positives and sends only legitimate results to burpsuite.
☆51Updated 3 years ago
Related projects: ⓘ
- Recon Custom WordList Ganerator☆55Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆70Updated 3 years ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆93Updated 3 years ago
- ☆28Updated this week
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 3 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- Takeover AWS ips and have a working POC for Subdomain Takeover.☆88Updated 5 months ago
- A list of Awesome Bughunting oneliners , collected from the various sources☆65Updated last year
- Get the scope of your bugcrowd programs☆67Updated 3 years ago
- Find subdomains and takeovers.☆81Updated last year
- 3klector is an automation Recon tool which collecting information about Acquisitions and ASN which related to Big Scope company☆49Updated 2 years ago
- ☆45Updated 3 years ago
- ☆45Updated this week
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆54Updated 2 years ago
- Expand urls into one url for each path depth☆32Updated 4 years ago
- Misc bounty and vulndisc things☆81Updated 3 years ago
- Some of my bug bounty tools☆47Updated 4 years ago
- ☆56Updated 2 months ago
- Running nuclei Continuously☆54Updated last year
- s3 brute force tool☆43Updated 3 years ago
- Horizontal Domain Discovery☆74Updated last year
- ☆38Updated 4 years ago
- S3 bucket finder from html,js and bucket misconfiguration testing tool☆33Updated 4 years ago
- Extracts subdomains from a specified domain using https://recon.dev.☆16Updated 4 years ago
- A listing of the most common vuln that you can link in your PoCs☆27Updated 5 years ago
- Recon for Department of Defense HackerOne program☆44Updated 5 years ago
- Host Header Injection Checker☆77Updated 2 years ago
- This repo includes my analysis of some public reports.☆57Updated 3 years ago