wireghoul / graudit

Related projects ⓘ

Alternatives and complementary repositories for graudit

• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,000Updated this week
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,794Updated 6 months ago
• haccer / subjack
  Subdomain Takeover tool written in Go
  ☆1,911Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,352Updated last month
• semgrep / semgrep-rules
  Semgrep rules registry
  ☆809Updated this week
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,966Updated 4 months ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,491Updated last year
• doyensec / inql
  InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable…
  ☆1,540Updated 4 months ago
• sa7mon / S3Scanner
  Scan for misconfigured S3 buckets across S3-compatible APIs!
  ☆2,573Updated this week
• owtf / owtf
  Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…
  ☆1,821Updated 3 weeks ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• RedSiege / EyeWitness
  EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.
  ☆4,996Updated 3 weeks ago
• bugcrowd / HUNT
  ☆2,183Updated 11 months ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,684Updated 3 years ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• swisskyrepo / GraphQLmap
  GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
  ☆1,391Updated 8 months ago
• PortSwigger / http-request-smuggler
  ☆958Updated 11 months ago
• jondonas / linux-exploit-suggester-2
  Next-Generation Linux Kernel Exploit Suggester
  ☆1,858Updated last year
• GrrrDog / Java-Deserialization-Cheat-Sheet
  The cheat sheet about Java Deserialization vulnerabilities
  ☆3,037Updated last year
• wireghoul / dotdotpwn
  DotDotPwn - The Directory Traversal Fuzzer
  ☆989Updated 2 years ago
• almandin / fuxploider
  File upload vulnerability scanner and exploitation tool.
  ☆3,053Updated last year
• jaeles-project / jaeles
  The Swiss Army knife for automated Web Application Testing
  ☆2,166Updated 6 months ago
• sleventyeleven / linuxprivchecker
  linuxprivchecker.py -- a Linux Privilege Escalation Check Script
  ☆1,569Updated 2 years ago
• EdOverflow / can-i-take-over-xyz
  "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
  ☆4,869Updated this week
• nccgroup / singularity
  A DNS rebinding attack framework.
  ☆1,036Updated 5 months ago
• darkoperator / dnsrecon
  DNS Enumeration Script
  ☆2,641Updated this week
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,699Updated 2 years ago
• qazbnm456 / awesome-cve-poc
  ✍️ A curated list of CVE PoCs.
  ☆3,324Updated 2 years ago