who0xac / PinakastraLinks
AI-powered pentesting framework with automated recon and exploitation. Multi-source subdomain discovery, active vuln testing (XSS/SQLi/SSRF/IDOR), AI-driven payload generation, local inference, structured reporting. For pentesters and bug bounty hunters.
☆53Updated last month
Alternatives and similar repositories for Pinakastra
Users that are interested in Pinakastra are comparing it to the libraries listed below
Sorting:
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆225Updated 5 months ago
- ☆222Updated 10 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆191Updated this week
- SubOwner - A Simple tool check for subdomain takeovers.☆117Updated last year
- TerminatorZ is a highly sophisticated and efficient web security tool that scans for top potential vulnerabilities with known CVEs in you…☆292Updated last year
- ☆177Updated last year
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆124Updated last year
- AI/LLM local model integration for analysis of reconftw results☆89Updated 8 months ago
- SQLMutant is a powerful SQL injection testing tool that includes both passive and active reconnaissance processes for any given domain. I…☆162Updated last year
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆55Updated last year
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆215Updated 4 months ago
- A Go-based utility that processes input through multiple AI models concurrently (OpenAI, Claude, and Gemini) and provides a summarized co…☆88Updated 7 months ago
- Welcome to the Bug Hunter's Wordlists repository! 🐛🔍 This repository serves as a comprehensive collection of essential wordlists utiliz…☆151Updated last year
- AI for Ethical Hacking - Workshop☆246Updated 2 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆131Updated last year
- Here are some cool and some unpublished Dorks☆81Updated last year
- Search for sensitive data in Postman public library.☆214Updated 5 months ago
- Automate Recon XSS Bug Bounty☆175Updated last week
- SpideyX a multipurpose Web Penetration Testing tool with asynchronous concurrent performance with multiple mode and configurations.☆188Updated 10 months ago
- ☆79Updated 7 months ago
- This repository contains all the GF-Patterns Repositories. All we have to do is just to run the given Shell File and it's Done !!☆21Updated 7 months ago
- ☆124Updated 5 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆327Updated 3 months ago
- ☆88Updated 4 months ago
- CLI tool to scan URLs for suspicious keywords, extensions, paths, and hidden files.☆49Updated 8 months ago
- 403Bypasser is a simple plugin that lets you bypass 403 status code by transforming HTTP requests with custom templates.☆97Updated 5 months ago
- Subdomain Enumerator and Simple Crawler☆300Updated last month
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆388Updated 2 months ago
- A Tool for Bug Bounty Hunters that uses Passive and Active Techniques to fetch URLs as a strong Recon, so you can then create Attack Vect…☆76Updated last year
- This repository contains some of the most exhaustive wordlists for enumeration, gathered from a lot of wordlists available on the Interne…☆107Updated last year