yeswehack / xsstools

Related projects ⓘ

Alternatives and complementary repositories for xsstools

• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆197Updated 2 years ago
• 0xDexter0us / Scavenger
  Burp extension to create target specific and tailored wordlist from burp history.
  ☆232Updated 2 years ago
• michael1026 / trashcompactor
  ☆65Updated last year
• hakluke / bug-bounty-standards
  A list of edge cases that occur in bug bounty programs, conversations on how they should be handled. The goal is to standardise the way t…
  ☆227Updated 2 years ago
• 0xbharath / slurp
  A blazing fast & feature rich Amazon S3 bucket enumerator.
  ☆94Updated 2 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• computer-engineer / WhiteboxPentest
  Whitebox source code review cheatsheet (Based on AWAE syllabus)
  ☆117Updated 2 years ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆135Updated 2 weeks ago
• th3hack3rwiz / Wordlist-Weaver
  The project aims at creating target-specific wordlists for any web application that you are testing.
  ☆63Updated 2 years ago
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆158Updated 7 months ago
• emadshanab / Gf-Patterns-Collection
  ☆149Updated last year
• BonJarber / fresh-resolvers
  List of fresh DNS resolvers updated daily
  ☆106Updated last year
• trufflesecurity / of-CORS
  ☆146Updated last year
• zPrototype / bugbounty_stuff
  ☆100Updated last year
• putsi / privatecollaborator
  A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate
  ☆205Updated 4 months ago
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆178Updated 2 years ago
• yavolo / eventlistener-xss-recon
  ☆128Updated last year
• pdelteil / BugBountyReportTemplates
  List of reporting templates I have used since I started doing BBH.
  ☆235Updated 2 months ago
• pikpikcu / nuclei-templates
  Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.
  ☆59Updated 7 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆120Updated this week
• gwen001 / dnspy
  Find subdomains and takeovers.
  ☆84Updated last year
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• daehee / mildew
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆95Updated 3 years ago
• bugcrowd / templates
  Repository to house markdown templates for researchers
  ☆192Updated 3 weeks ago