A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.
☆30Jul 30, 2024Updated last year
Alternatives and similar repositories for reflxss
Users that are interested in reflxss are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆149Feb 21, 2024Updated 2 years ago
- collect robots.txt endpoint for allowed and disallowed endpoints from a list of subdomains☆14Jan 23, 2023Updated 3 years ago
- Here we are gather all Nuclei Templates that are Publically available.☆15Apr 28, 2024Updated last year
- A tool for extract Endpoints, URLs and Secrets from contents☆67Apr 5, 2026Updated last week
- Paramix is a command-line tool for modifying the parameters of a list of URLs from stdin and returns them in stdout.☆17Aug 23, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 🐚��ᴠʟᴀɴɢ ʀᴇᴠᴇʀsᴇ sʜᴇʟʟ🐚☆11Apr 28, 2022Updated 3 years ago
- Another vulnerability scanner☆18Aug 9, 2025Updated 8 months ago
- A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)☆17Jul 27, 2024Updated last year
- ReconX is a powerful automated reconnaissance and vulnerability scanning tool designed for ethical hackers, penetration testers, and secu…☆16Feb 27, 2025Updated last year
- SNMP Bash Script to discover valid community strings, dump basic information, check for write permission and check for RCE.☆11Apr 27, 2024Updated last year
- ScrapeAW is a framework that without API scrape IPs across the world using Shodan☆11May 16, 2024Updated last year
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆18Jun 6, 2024Updated last year
- Collection of tools that might help Persian translators.☆11Dec 31, 2023Updated 2 years ago
- HackerOne Notifier is an automated bot that monitors new programs launched on HackerOne and sends Telegram Bot notifications whenever a n…☆22Nov 4, 2025Updated 5 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆11Jan 23, 2025Updated last year
- ☆27Dec 17, 2021Updated 4 years ago
- Your favourite chest/terminal bursting buddy!☆18Nov 27, 2021Updated 4 years ago
- SSH & FTP brute-forcing tool written in python☆11Oct 2, 2024Updated last year
- 一个用于修改右键插件菜单层级的Burpsuite插件。A simple BurpSuite extension to change extension context menu level.☆14Jan 15, 2024Updated 2 years ago
- script python to check url list via cookies and Authorization☆19Feb 28, 2023Updated 3 years ago
- Creates date-based wordlists that can be used for penetration testing, QA fixtures, or any workflow that needs exhaustive date coverage.☆16Mar 25, 2026Updated 3 weeks ago
- Kumpulan virtex WhatsApp☆34Aug 17, 2020Updated 5 years ago
- Code Repository for Python For Android Hacking Crash Course: Trojan Perspective, published by Packt☆23Jan 19, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- An open-source knowledge base for security researchers.☆18Jan 8, 2025Updated last year
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆141Sep 16, 2024Updated last year
- A simple command line tool designed to explore the mechanics of dictionary attacks on the FTP protocol.☆19Jun 16, 2021Updated 4 years ago
- This Burp extension extracts various data (path, parameter keys, parameter values, subdomains, etc.) from the sitemap. This data is used …☆45Sep 9, 2021Updated 4 years ago
- ☆34Apr 10, 2026Updated last week
- Port scanning is crucial in recon, but running it manually on big scopes? Nope. That’s why I made Nmap Bomber a Python script that runs f…☆41Jul 31, 2025Updated 8 months ago
- ☆15Mar 21, 2025Updated last year
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various e…☆48Apr 29, 2024Updated last year
- A high performance go implementation of Wappalyzer Technology Detection Library☆27Feb 20, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Extract domain from SSL Information☆15Nov 23, 2021Updated 4 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆95Dec 22, 2024Updated last year
- ✅ Experience the power of an automated Insecure Direct Object Reference (IDOR) vulnerability detection tool. Safeguard your applications …☆68Mar 9, 2025Updated last year
- A Python script that gathers all valid IP addresses from all text files from a directory, and checks them against Whois database, TOR rel…☆29Jun 27, 2022Updated 3 years ago
- Scripts to set up your own Android 📱 app hacking lab☆98Jul 12, 2024Updated last year
- Burp suite extension which help you to find inconsistency between content-type header and body parsers☆11Sep 14, 2025Updated 7 months ago
- ☆12Aug 19, 2024Updated last year