x0rr-dan / s1c0nLinks
simple recon tool to help you for searching vulnerability on web server
☆74Updated 4 months ago
Alternatives and similar repositories for s1c0n
Users that are interested in s1c0n are comparing it to the libraries listed below
Sorting:
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆35Updated last year
- an exploit of Server-side request forgery (SSRF)☆50Updated 11 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆24Updated 2 years ago
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆23Updated 2 weeks ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated 2 years ago
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆37Updated 2 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆57Updated 3 years ago
- Offensive Security MISC Annotations and Payloads for Ethical Hackers / Security Researchers☆28Updated 7 months ago
- Just another script for automatize boolean-based blind SQL injections. (Demo)☆54Updated 2 years ago
- Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API☆92Updated 2 years ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆92Updated 11 months ago
- A Python based scanner uses shodan-internetdb to scan the IP.☆31Updated 3 years ago
- F5 BIG-IP Scanner scans for servers on shodan and checks to see if they are vulnerable.☆18Updated 2 years ago
- Simple-XSS is a multiplatform cross-site scripting (XSS) vulnerability exploitation tool.☆48Updated 2 weeks ago
- ☆37Updated last year
- A command-line utility designed to discover subdomains for a given domain in a simple, efficient way. It works by gathering information f…☆111Updated last week
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- ☆18Updated last year
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 7 months ago
- CVE-2023-32243 - Essential Addons for Elementor 5.4.0-5.7.1 - Unauthenticated Privilege Escalation☆81Updated 2 years ago
- Repo for hosting rayder workflows☆61Updated last year
- tools to find xss in a website☆61Updated 3 years ago
- Multi-threaded URL enumeration/content-discovery tool in Python.☆107Updated last year
- Burp Suite extension that makes your life easier by tucking the headers out of the way, so you can see the body content right away withou…☆38Updated last year
- FireHawk: The Elite Firebase Security Testing Utility☆21Updated last year
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆44Updated last year
- bash script for automating subdomain enumeration process either passive or active☆27Updated 7 months ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 2 months ago
- Script for Reconnaissance(Bug Bounty)☆18Updated 3 years ago