xsscx / Commodity-Injection-Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
☆390Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for Commodity-Injection-Signatures
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆530Updated 2 years ago
- Payloads for CRLF Injection☆215Updated 3 weeks ago
- Open Redirect Payloads☆583Updated 3 weeks ago
- Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)☆443Updated 5 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆668Updated last year
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆308Updated last year
- SSRF testing tool☆241Updated last year
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆524Updated 6 years ago
- Various Payload wordlists☆235Updated 4 years ago
- HTTP file upload scanner for Burp Proxy☆397Updated last year
- Bugbounty scope tool☆317Updated last month
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆511Updated last year
- this contain the burp pack☆203Updated 7 years ago
- Content discovery wordlists generated using BigQuery☆557Updated 4 years ago
- Automatic tool for DNS rebinding-based SSRF attacks☆293Updated 4 years ago
- Trying to make automated recon for bug bounties☆250Updated 3 years ago
- Python based scanner to find potential SSRF parameters☆283Updated 7 months ago
- A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…☆249Updated last year
- ☆353Updated 2 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆346Updated 6 years ago
- Simple shell script for automated domain recognition with some tools☆299Updated 3 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated 3 weeks ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆449Updated 9 months ago
- An automated approach to performing recon for bug bounty hunting and penetration testing.☆443Updated 4 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆257Updated 3 years ago
- Lesser Known Web Attack Lab☆330Updated 4 years ago
- ☆259Updated 5 years ago
- This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.☆236Updated 5 years ago
- Correlated injection proxy tool for XSS Hunter☆249Updated last year