xsscx / Commodity-Injection-Signatures

Related projects ⓘ

Alternatives and complementary repositories for Commodity-Injection-Signatures

• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆308Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆583Updated last month
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆249Updated last year
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆558Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• mandatoryprogrammer / xsshunter_client
  Correlated injection proxy tool for XSS Hunter
  ☆249Updated last year
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆216Updated last month
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆532Updated 2 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆482Updated 10 months ago
• daeken / SSRFTest
  SSRF testing tool
  ☆241Updated last year
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆346Updated 6 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆671Updated last year
• jobertabma / relative-url-extractor
  A small tool that extracts relative URLs from a file.
  ☆729Updated 4 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆443Updated 5 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆250Updated 3 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆611Updated 9 months ago
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆639Updated 5 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• milo2012 / pathbrute
  Pathbrute
  ☆444Updated 4 years ago
• allyomalley / LiveTargetsFinder
  Generates lists of live hosts and URLs for targeting, automating the usage of MassDNS, Masscan and nmap to filter out unreachable hosts a…
  ☆364Updated 2 years ago
• s0md3v / MyPapers
  Repository for hosting my research papers
  ☆503Updated 7 months ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆293Updated 4 years ago
• PortSwigger / backslash-powered-scanner
  Finds unknown classes of injection vulnerabilities
  ☆637Updated last year
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆204Updated 7 years ago
• nccgroup / BurpSuiteHTTPSmuggler
  A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
  ☆709Updated 5 years ago
• danilabs / tools-tbhm
  Tools of "The Bug Hunters Methodology V2 by @jhaddix"
  ☆197Updated 7 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆514Updated 4 years ago
• jobertabma / virtual-host-discovery
  A script to enumerate virtual hosts on a server.
  ☆665Updated 6 years ago