wish-i-was / femidaLinks
Automated blind-xss search for Burp Suite
☆284Updated 5 years ago
Alternatives and similar repositories for femida
Users that are interested in femida are comparing it to the libraries listed below
Sorting:
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆293Updated 5 years ago
- Payloads for CRLF Injection☆225Updated 9 months ago
- Various Payload wordlists☆237Updated 3 months ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆260Updated 2 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆276Updated 4 years ago
- Burp Suite Extension to monitor new scope☆198Updated 4 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆152Updated 2 years ago
- You can read the writeup on this script here☆275Updated 5 years ago
- ☆278Updated 3 years ago
- SSRF testing tool☆244Updated 2 years ago
- Burp Suite extension to discover assets from HTTP response.☆227Updated 6 months ago
- File Inclusion & Directory Traversal fuzzing, enumeration & exploitation tool.☆274Updated 4 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆221Updated 7 years ago
- this contain the burp pack☆206Updated 8 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆214Updated 9 months ago
- Rock-On is a all in one Recon tool that will just get a single entry of the Domain name and do all of the work alone.☆299Updated 5 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆316Updated 2 years ago
- Fuzzing Payloads to Assist in Web Application Testing.☆166Updated 6 years ago
- ☆194Updated 6 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆170Updated 4 years ago
- Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.☆320Updated 3 years ago
- Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.☆148Updated 5 years ago
- A tool to find sensitive keys and passwords in Travis logs☆143Updated 4 years ago
- An hourly updated list of subdomains gathered from certificate transparency logs☆348Updated 3 years ago
- Python tool to find potential Server Side Reqest Forgery (SSRF) vulnerability parameters.☆323Updated last month
- Common Web Managers Fuzz Wordlists☆175Updated 4 months ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆254Updated last year
- You can read the writeup on this script here☆193Updated 3 years ago
- Pentest/BugBounty progress control with scanning modules☆281Updated 5 years ago