"What To" guide for finding vulnerabilities in sites.
☆21Jul 22, 2017Updated 8 years ago
Alternatives and similar repositories for WhatTo
Users that are interested in WhatTo are comparing it to the libraries listed below
Sorting:
- ☆10May 12, 2017Updated 8 years ago
- Golang code to crawl website, extract links from html, paths from JavaScript code, follow and repeat.☆12Jun 4, 2018Updated 7 years ago
- The fastest (and least featureful) DNS bruteforcer in the South☆27Dec 31, 2019Updated 6 years ago
- A multi-target URL bruteforcer☆22Aug 6, 2018Updated 7 years ago
- A horizontal and vertical web content enumerator☆52Aug 15, 2018Updated 7 years ago
- Highlight Burp proxy requests made by different browsers☆29Sep 21, 2017Updated 8 years ago
- ☆20Jan 25, 2019Updated 7 years ago
- A framework for exploiting padding oracles in network-based applications☆26Feb 25, 2023Updated 3 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Aug 23, 2018Updated 7 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆228Aug 22, 2017Updated 8 years ago
- Binary Ninja Posters☆35Oct 14, 2020Updated 5 years ago
- This repository contains some bettercap transparent proxy example modules.☆16Nov 28, 2017Updated 8 years ago
- Some crackme i built for Android☆12Apr 15, 2020Updated 5 years ago
- BASH + VIM = Cryptolocker☆11Jul 31, 2018Updated 7 years ago
- Simple webinterface combining different recon tools.☆12Mar 2, 2018Updated 8 years ago
- the Open Source Windows Privilege Escalation Guide☆10Mar 16, 2017Updated 9 years ago
- Bug Bounty statistics tool.☆33Nov 17, 2022Updated 3 years ago
- Starts an ngrok TCP tunnel and notifies you of the URL. Perfect for automated remote SSH connections.☆14Jan 24, 2021Updated 5 years ago
- A playground to practice SSRF Attacks against web apps☆17Oct 15, 2018Updated 7 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Sep 24, 2012Updated 13 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆116Mar 29, 2019Updated 6 years ago
- Daily TLD health report generated using RIPE's DNSCheck against all existing TLDs.☆18Jan 25, 2017Updated 9 years ago
- BountyDash is a tool to combine your rewards from all platforms, giving you insights about your progress and bug hunting patterns.☆163Apr 24, 2025Updated 10 months ago
- extracts urls from text☆16Jul 13, 2018Updated 7 years ago
- Fingerprint a web app using local files as the fingerprint sources☆38May 16, 2017Updated 8 years ago
- A Pythonic wrapper to MassDNS☆24Mar 21, 2018Updated 7 years ago
- Dump exposed HTTP .git fast☆51Nov 11, 2022Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆378Oct 12, 2020Updated 5 years ago
- Learning Coccinelle☆11Nov 2, 2017Updated 8 years ago
- PoC for an adaptive parallelised DNS prober☆44Oct 4, 2017Updated 8 years ago
- Send HTTP scrapers to Wonderland☆24Jan 7, 2019Updated 7 years ago
- Dynamic DNS Update Bruteforce Tool☆29Feb 8, 2017Updated 9 years ago
- Exploit for Jenkins serialization vulnerability - CVE-2016-0792☆49Aug 2, 2017Updated 8 years ago
- Random Tips and Writeups.☆15Feb 21, 2019Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆34Nov 17, 2018Updated 7 years ago
- Source code of https://blahcat.github.io☆13Oct 6, 2025Updated 5 months ago
- ☆162Dec 7, 2017Updated 8 years ago
- Awesome list for baseband modem resources.☆13Jun 20, 2018Updated 7 years ago
- A Firefox extension and WebSocket handler that checks S3/Google/Azure buckets while your browse.☆37Jul 10, 2020Updated 5 years ago