xsscx / Commodity-Injection-Signatures

Related projects ⓘ

Alternatives and complementary repositories for Commodity-Injection-Signatures

• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆530Updated 2 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆215Updated 3 weeks ago
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆583Updated 3 weeks ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆443Updated 5 years ago
• incredibleindishell / SSRF_Vulnerable_Lab
  This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack
  ☆668Updated last year
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆308Updated last year
• daeken / SSRFTest
  SSRF testing tool
  ☆241Updated last year
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• root4loot / rescope
  Bugbounty scope tool
  ☆317Updated last month
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆511Updated last year
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆203Updated 7 years ago
• pentester-io / commonspeak
  Content discovery wordlists generated using BigQuery
  ☆557Updated 4 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆293Updated 4 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆250Updated 3 years ago
• In3tinct / See-SURF
  Python based scanner to find potential SSRF parameters
  ☆283Updated 7 months ago
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆249Updated last year
• random-robbie / keywords
  ☆353Updated 2 years ago
• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆346Updated 6 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆299Updated 3 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated 3 weeks ago
• anantshri / svn-extractor
  simple script to extract all web resources by means of .SVN folder exposed over network.
  ☆449Updated 9 months ago
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆443Updated 4 years ago
• anshumanbh / brutesubs
  An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …
  ☆257Updated 3 years ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆330Updated 4 years ago
• kacperszurek / exploits
  ☆259Updated 5 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆236Updated 5 years ago
• mandatoryprogrammer / xsshunter_client
  Correlated injection proxy tool for XSS Hunter
  ☆249Updated last year