unlock-security / sqlmapsh
SQLMap wrapper that lets you use Interact.sh as a DNS server for exfiltrating data with zero configuration
☆38Updated 2 years ago
Alternatives and similar repositories for sqlmapsh:
Users that are interested in sqlmapsh are comparing it to the libraries listed below
- Simple bash Script to automate initial recon using (httpx, puredns, regulator, wayback, katana, aquatone)☆35Updated 2 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆49Updated last year
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆49Updated 9 months ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆25Updated 2 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆58Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated 4 months ago
- Web cache poisoning vulnerability scanner.☆64Updated 2 years ago
- ☆53Updated 2 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆39Updated 2 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆56Updated 3 years ago
- External recon toolkit☆45Updated 2 months ago
- DNS resolution tracing tool☆34Updated 3 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆39Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 4 months ago
- This repository serves as a curated resource for OffSec's OSEP (PEN-300) certification preparation, containing useful links, materials, a…☆14Updated 4 months ago
- A python3 script searching for secret on swaggerhub☆61Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.☆20Updated 3 months ago
- Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure☆30Updated last year
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- Given a list of domains, you resolve them and get the IP addresses.☆48Updated 3 years ago
- HTTP verb tampering & methods enumeration☆56Updated 2 years ago
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆24Updated 7 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year