webarx-security / wpbullet
A static code analysis for WordPress (and PHP)
☆235Updated 2 years ago
Alternatives and similar repositories for wpbullet:
Users that are interested in wpbullet are comparing it to the libraries listed below
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.☆180Updated 5 years ago
- WordPress Plugin Security Testing Cheat Sheet☆268Updated 4 years ago
- ☆62Updated 3 years ago
- DNS rebinding toolkit☆251Updated last year
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆295Updated 5 years ago
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.☆67Updated 3 years ago
- Payloads for CRLF Injection☆224Updated 5 months ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆273Updated 4 years ago
- Python tool to find potential SSRF parameters☆314Updated last month
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆311Updated 3 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆349Updated 3 weeks ago
- You can read the writeup on this script here☆193Updated 3 years ago
- A proof-of-concept WordPress plugin fuzzer☆188Updated 6 months ago
- ☆241Updated 6 years ago
- A curated list of amazingly bug bounty tips from security researchers around the world.☆105Updated 6 years ago
- Intelligent XSS detection tool that uses human techniques for looking for reflected cross-site scripting (XSS) vulnerabilities☆148Updated 2 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆284Updated 2 months ago
- HTTP parameter discovery suite.☆94Updated 4 years ago
- This repository created for personal use and added tools from my latest blog post.☆349Updated 2 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆111Updated 5 years ago
- Various Payload wordlists☆235Updated 4 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆138Updated 5 years ago
- Sample vulnerable code and its exploit code☆189Updated 4 years ago
- Web Application recon automation☆124Updated 4 years ago
- Automated blind-xss search for Burp Suite☆283Updated 5 years ago
- An hourly updated list of subdomains gathered from certificate transparency logs☆344Updated 3 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆312Updated last year
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 3 years ago
- Multiprocessing(Parallel)Subdomain Detect Script☆330Updated last year