yeswehack / xsstools
xss development frameworks, with the goal of making payload writing easier.
☆136Updated 3 months ago
Related projects ⓘ
Alternatives and complementary repositories for xsstools
- Unofficial documentation for the great tool Param Miner☆173Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Prototype pollution scanner using headless chrome☆197Updated 2 years ago
- Burp extension to create target specific and tailored wordlist from burp history.☆232Updated 2 years ago
- ☆65Updated last year
- A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…☆227Updated 2 years ago
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆94Updated 2 years ago
- Burp Extension for easily creating Wordlists☆210Updated 3 years ago
- Whitebox source code review cheatsheet (Based on AWAE syllabus)☆117Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆135Updated 2 weeks ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆63Updated 2 years ago
- A reverse whois tool based on Whoxy API.☆158Updated 7 months ago
- ☆149Updated last year
- List of fresh DNS resolvers updated daily☆106Updated last year
- ☆146Updated last year
- ☆100Updated last year
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆205Updated 4 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆178Updated 2 years ago
- ☆128Updated last year
- List of reporting templates I have used since I started doing BBH.☆235Updated 2 months ago
- Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.☆59Updated 7 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆120Updated this week
- Find subdomains and takeovers.☆84Updated last year
- Workshop given at Hack in Paris 2019☆121Updated last year
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆95Updated 3 years ago
- Repository to house markdown templates for researchers☆192Updated 3 weeks ago