x90skysn3k / brutespray
Bruteforcing from various scanner output - Automatically attempts default creds on found services.
☆2,179Updated this week
Alternatives and similar repositories for brutespray:
Users that are interested in brutespray are comparing it to the libraries listed below
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,773Updated 2 years ago
- Popular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns☆1,495Updated last year
- Striker is an offensive information and vulnerability scanner.☆2,261Updated last year
- A default credential scanner.☆1,474Updated 3 years ago
- A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.☆1,589Updated 4 months ago
- File upload vulnerability scanner and exploitation tool.☆3,180Updated last year
- CeWL is a Custom Word List Generator☆2,157Updated 4 months ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆5,219Updated 5 months ago
- Find exploits in local and online databases instantly☆1,709Updated 3 years ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,151Updated 2 years ago
- Gives you one-liners that aids in penetration testing operations, privilege escalation and more☆1,699Updated 5 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,224Updated last year
- Generates permutations, alterations and mutations of subdomains and then resolves them☆2,393Updated 2 months ago
- Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications…☆1,278Updated 6 months ago
- Collection of Scripts for shodan searching stuff.☆1,095Updated 4 months ago
- A Tool for Domain Flyovers☆5,732Updated 2 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆2,092Updated last month
- A python script that finds endpoints in JavaScript files☆3,867Updated 11 months ago
- Find web directories without bruteforce☆1,817Updated last year
- Full-featured C2 framework which silently persists on webserver with a single-line PHP backdoor☆2,308Updated 10 months ago
- Notes about attacking Jenkins servers☆2,036Updated 8 months ago
- Advanced dork Search & Mass Exploit Scanner☆1,459Updated 7 months ago
- Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload cre…☆3,540Updated this week
- DotDotPwn - The Directory Traversal Fuzzer☆1,032Updated 2 years ago
- Mass scan IPs for vulnerable services☆1,027Updated 3 years ago
- All In One Web Recon☆2,389Updated 4 months ago
- Reconnaissance Swiss Army Knife☆1,877Updated 4 years ago
- OWASP Joomla Vulnerability Scanner Project https://www.secologist.com/☆1,106Updated 6 months ago
- offsec batteries included☆1,545Updated last year
- Advanced reconnaissance utility☆969Updated last year