wireghoul / dotdotpwn

Related projects ⓘ

Alternatives and complementary repositories for dotdotpwn

• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,699Updated 2 years ago
• codingo / VHostScan
  A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…
  ☆1,201Updated 11 months ago
• kurobeats / fimap
  fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…
  ☆520Updated 2 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆532Updated 2 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,491Updated last year
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆790Updated last year
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆637Updated last year
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,037Updated 4 months ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• ztgrace / changeme
  A default credential scanner.
  ☆1,451Updated 2 years ago
• Ice3man543 / SubOver
  A Powerful Subdomain Takeover Tool
  ☆931Updated last year
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,453Updated last year
• vulnersCom / burp-vulners-scanner
  Vulnerability scanner based on vulners.com search API
  ☆834Updated 7 months ago
• maK- / parameth
  This tool can be used to brute discover GET and POST parameters
  ☆1,344Updated 5 years ago
• AonCyberLabs / PadBuster
  Automated script for performing Padding Oracle attacks
  ☆751Updated 4 months ago
• nahamsec / JSParser
  ☆788Updated last year
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,540Updated 4 years ago
• christophetd / censys-subdomain-finder
  ⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
  ☆743Updated last year
• x90skysn3k / brutespray
  Bruteforcing from various scanner output - Automatically attempts default creds on found services.
  ☆2,043Updated last week
• rajeshmajumdar / BruteXSS
  BruteXSS is a tool written in python simply to find XSS vulnerabilities in web application. This tool was originally developed by Shawar …
  ☆502Updated 3 years ago
• TypeError / domained
  Multi Tool Subdomain Enumeration
  ☆722Updated 3 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆514Updated 4 years ago
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆558Updated 4 years ago
• jhaddix / domain
  Setup script for Regon-ng
  ☆923Updated 4 years ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆639Updated 5 years ago
• vysecurity / DomLink
  A tool to link a domain with registered organisation names and emails, to other domains.
  ☆829Updated 6 months ago
• OWASP / joomscan
  OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/
  ☆1,078Updated 2 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,352Updated last month