tomnomnom / JS-Scan
a .js scanner, built in php. designed to scrape urls and other info
☆21Updated 7 years ago
Related projects: ⓘ
- Tool for making it easy to collect dns results from the CLI☆39Updated last month
- ☆47Updated 3 years ago
- Offsec Pentest and Bug Bounty Notes☆24Updated 4 years ago
- A collection of simple tools and poc-builders☆39Updated last year
- Script for Bug Bounty☆28Updated 3 years ago
- Some Buffer Overflow Automation Scripts I'll be using between PWK labs and Exam!☆18Updated 3 years ago
- Misc bounty and vulndisc things☆81Updated 3 years ago
- ☆47Updated 3 months ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆60Updated 10 months ago
- A BurpSuite plugin for BBRF☆23Updated last year
- ☆37Updated 3 years ago
- An automated, reliable scanner for the Log4Shell (CVE-2021-44228) vulnerability.☆43Updated 2 years ago
- ☆21Updated this week
- Literally spray blind xss payloads everywhere.☆25Updated 2 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆55Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Updated 3 years ago
- ☆28Updated this week
- Handy bash and python scripts for bug bounty hunting!☆47Updated 3 years ago
- Checks if files is accessible based on the source code.☆16Updated 6 months ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆78Updated last year
- Tool to generate csrf payloads based on vulnerable requests☆61Updated 3 years ago
- security.txt collection of most popular world-wide domains☆50Updated 11 months ago
- Alternative to XSS Hunter for blind XSS.☆48Updated last year
- Converts a hostname (or URI) to IP address using your local resolver☆24Updated 5 months ago
- Find subdomains and takeovers.☆81Updated last year
- Wordlists for intelligent directory brute-forcing☆28Updated 2 years ago
- ☆38Updated 3 years ago
- Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.☆56Updated 4 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆39Updated 11 months ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆61Updated 4 years ago