trufflesecurity / xsshunterLinks
☆470Updated 5 months ago
Alternatives and similar repositories for xsshunter
Users that are interested in xsshunter are comparing it to the libraries listed below
Sorting:
- An IIS short filename enumeration tool☆969Updated 7 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆654Updated last year
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,124Updated 2 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆665Updated 3 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆519Updated 4 months ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆376Updated 3 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆534Updated this week
- Golang client for querying SecurityTrails API data☆562Updated last year
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆987Updated last month
- An extremely effective subdomain enumeration wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.☆657Updated 2 years ago
- Small tool to Grab subdomains using Shodan api.☆476Updated last week
- bash script for Subdomain Enumeration☆375Updated last month
- CT Log Scanner☆380Updated 3 months ago
- Local File Inclusion discovery and exploitation tool☆318Updated 6 months ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆601Updated 4 months ago
- This a adaption of tomnomnom's kxss tool with a different output format☆481Updated last year
- Discover new target domains using Content Security Policy☆460Updated 2 weeks ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆71Updated last year
- Free, libre, effective, and data-driven wordlists for all!☆612Updated 3 years ago
- oneliner commands for bug bounties☆445Updated 2 years ago
- Bambdas collection for Burp Suite Professional and Community.☆343Updated last week
- ☆492Updated last year
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆370Updated last year
- i will upload more templates here to share with the comunity.☆550Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆364Updated last year
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆248Updated 11 months ago
- hakip2host takes a list of IP addresses via stdin, then does a series of checks to return associated domain names.☆447Updated 3 years ago
- The most exhaustive list of reliable DNS resolvers.☆801Updated last week
- A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target☆1,363Updated last month
- Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!☆875Updated last year