x0rr-dan / s1c0n
simple recon tool to help you for searching vulnerability on web server
☆73Updated last month
Alternatives and similar repositories for s1c0n:
Users that are interested in s1c0n are comparing it to the libraries listed below
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆31Updated 8 months ago
- Python tool to test known techniques to bypass 403 and 401 HTTP responses.☆35Updated last year
- A collection of useful lists for Penetration Testing & Bug Bounty - Content Discovery, Payloads, Variables, Sandbox Escaping, etc☆57Updated 5 months ago
- "XSS automation tool helps hackers identify and exploit cross-site scripting vulnerabilities in web apps. Tests for reflected and persist…☆93Updated 6 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆57Updated 2 months ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆32Updated last year
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated 11 months ago
- tools to find xss in a website☆57Updated 2 years ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆39Updated 3 months ago
- CVE-2024-32640 | Automated SQLi Exploitation PoC☆61Updated 9 months ago
- Fetch data (open ports, CVEs, CPEs, ...) from shodan internetDB API☆92Updated 2 years ago
- "🔍 Subtron: Bash-driven subdomain seeker. Utilizes Subfinder, Amass, Assetfinder, and HTTPX to swiftly uncover live domains. Results sto…☆22Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- A tool for Subdomain takeovers detection☆26Updated 2 years ago
- ScopeHunter is a command-line tool for finding in scope targets for bug bounty programs.☆65Updated 5 months ago
- ☆67Updated last year
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Updated 3 months ago
- ☆72Updated 9 months ago
- Filter URLs to save your time.☆59Updated 2 years ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆65Updated last year
- This tool allows you to find ssti vulnerability with ease!☆20Updated 2 years ago
- Chrome extension tool for OSINT & Recon☆51Updated 11 months ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- DNS resolution tracing tool☆34Updated 3 years ago
- Striping CDN IPs from a list of IP Addresses☆75Updated 2 years ago
- Tips, Tricks, and Scripts for Linux Post Exploitation☆38Updated last year
- bash script for automating subdomain enumeration process either passive or active☆27Updated 2 months ago
- Script that performs a scan of a specific domain, using the following tools: Subfinder, assetfinder, amass and httpx. The result is merge…☆23Updated 2 years ago
- Web Hacking and Red Teaming MindMap☆70Updated 2 years ago