vavkamil / XSSwaggerLinks
A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
☆59Updated 5 years ago
Alternatives and similar repositories for XSSwagger
Users that are interested in XSSwagger are comparing it to the libraries listed below
Sorting:
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Burp Bounty profiles☆83Updated 3 years ago
- ☆59Updated 11 months ago
- ☆44Updated 3 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆64Updated 5 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Get the scope of your bugcrowd programs☆67Updated 4 years ago
- ☆60Updated 4 years ago
- Host Header Injection Checker☆81Updated 3 years ago
- ☆95Updated 3 years ago
- 4xxbypass☆67Updated 4 years ago
- Extract SSL certificate data (Subject Name, Subject Alt Names, Organisation)☆42Updated 4 months ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- Expand urls into one url for each path depth☆33Updated 4 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Updated 4 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Updated 3 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 5 years ago
- Bug Bounty Tools☆34Updated 4 years ago
- Burp-suite Extension For finding .map files☆47Updated last year
- Some of my bug bounty tools☆51Updated 5 years ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆44Updated 2 years ago
- Horizontal Domain Discovery☆76Updated 2 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- ☆38Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- My Tools For Bug Bounty☆66Updated 8 months ago