vavkamil / XFFenumLinks
X-Forwarded-For [403 forbidden] enumeration
☆94Updated last year
Alternatives and similar repositories for XFFenum
Users that are interested in XFFenum are comparing it to the libraries listed below
Sorting:
- CRLF and open redirect fuzzer☆112Updated 3 years ago
- Host Header Injection Checker☆82Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆178Updated 4 years ago
- ☆59Updated 2 years ago
- Command line tool for testing CRLF injection on a list of domains.☆165Updated last year
- ☆194Updated 6 years ago
- Some of my bug bounty tools☆51Updated 5 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆91Updated last year
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆171Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215Updated 6 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆113Updated 2 years ago
- ☆31Updated 4 years ago
- Misc bounty and vulndisc things☆86Updated 4 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 5 years ago
- Finds the End-Points in JavaScript files☆94Updated 3 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆121Updated 3 years ago
- ☆58Updated 4 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆156Updated 4 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆88Updated 5 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 5 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 4 years ago
- 4xxbypass☆67Updated 4 years ago
- Generates target specific word lists for Fuzzing with fuff☆111Updated 4 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆92Updated last month
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 6 years ago
- Random utilities from my security projects that might be useful to others☆182Updated 6 months ago
- ☆108Updated 4 years ago