themalwarenews / headerinjection
This script identifies Host Header Injection vulnerabilities in a list of URLs or a specific domain, outputting the vulnerable locations along with the specific headers causing the vulnerability
☆15Updated last year
Related projects: ⓘ
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- Automate bug bounty recon using bash alias☆14Updated last month
- Simple recon tool automates your recon process☆15Updated last year
- ☆21Updated 2 years ago
- ☆12Updated 2 years ago
- ☆18Updated 10 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- A solid recon tool I use personally.☆31Updated last year
- This repo offers comprehensive information, necessary tools, and instructional videos for beginners in Android penetration testing, provi…☆16Updated last year
- ☆16Updated this week
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆22Updated last month
- Programs I Made while learning python for pentesters.☆17Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated last year
- ☆44Updated last year
- ☆13Updated last year
- Droz_scan is a automated script, that runs all the queries of drozer in a single run☆22Updated last year
- ☆19Updated 3 years ago
- XSS PoCs to elevate your alert()☆13Updated last year
- List of custom Nuclei templates☆15Updated 10 months ago
- XSS Finder Via SSTI☆54Updated last year
- ☆16Updated last year
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 2 years ago
- ☆24Updated this week
- Xss payload for bypassing waf☆13Updated 4 years ago
- ☆18Updated last year
- Find CVEs that don't have a Detectify modules.☆21Updated last year
- offy is a tool for bugbounty hunters to save money in their EC2 instances☆12Updated last year
- A Burp Extension that makes it easier to view all script code on a Response.☆11Updated 10 months ago
- All The Notes And Tips I FOund In Github And Twitter I Put Them Here☆29Updated 4 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆31Updated 9 months ago