yavolo / Web-CTF-CheatsheetLinks
Web CTF CheatSheet 🐈
☆34Updated 6 years ago
Alternatives and similar repositories for Web-CTF-Cheatsheet
Users that are interested in Web-CTF-Cheatsheet are comparing it to the libraries listed below
Sorting:
- Script for Bug Bounty☆29Updated 3 years ago
- Some contributions in the nuclei-templates repository☆58Updated 3 years ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆79Updated 4 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- ☆33Updated 3 years ago
- ☆43Updated 4 years ago
- Extract endpoints marked as disallow in robots files to generate wordlists.☆59Updated 3 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- A "Spring4Shell" vulnerability scanner.☆49Updated 7 months ago
- Given a list of domains, you resolve them and get the IP addresses.☆48Updated 3 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 3 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 months ago
- A simple tool which makes creating nuclei templates even easier.☆37Updated last year
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆88Updated 3 years ago
- Collection of content discovery wordlists in one wordlist.☆38Updated 3 years ago
- ☆39Updated 3 years ago
- Burp Suite plugin to copy regex matches from selected requests and/or responses to the clipboard.☆34Updated 3 years ago
- ☆26Updated 2 years ago
- Modified Nuclei Templates Version to FUZZ Host Header☆50Updated 3 years ago
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 3 months ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 5 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆61Updated 4 years ago
- Scanner for Cross-Site WebSocket Hijacking☆42Updated 5 years ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆113Updated 3 years ago
- XSSearch is a comprehensive reflected XSS tool built on selenium framework in python language. It contains more than 3000 payloads for au…☆60Updated 3 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- ☆62Updated 4 years ago