GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ghsec → ghsec-jaeles-signatures

ghsec / ghsec-jaeles-signatures

Licence: other
Signatures for jaeles scanner by @j3ssie

Labels

securitybugbounty

Projects that are alternatives of or similar to ghsec-jaeles-signatures

boxer
Boxer: A fast directory bruteforce tool written in Python with concurrency.
Stars: ✭ 15 (-84.85%)
Mutual labels:  bugbounty
HostPanic
Find host header injections and perform Host Header attacks with other kind of bugs like web cache poissoning
Stars: ✭ 23 (-76.77%)
Mutual labels:  bugbounty
shania
Scan secrets from Continuous Integration Build Logs
Stars: ✭ 54 (-45.45%)
Mutual labels:  bugbounty
dontgo403
Tool to bypass 40X response codes.
Stars: ✭ 457 (+361.62%)
Mutual labels:  bugbounty
allsafe
Intentionally vulnerable Android application.
Stars: ✭ 135 (+36.36%)
Mutual labels:  bugbounty
project-black
Pentest/BugBounty progress control with scanning modules
Stars: ✭ 279 (+181.82%)
Mutual labels:  bugbounty
SuperLibrary
Information Security Library
Stars: ✭ 60 (-39.39%)
Mutual labels:  bugbounty
gf-patterns
Collection grep patterns for Tom Hudson a.k.a Tomnomnom tools namely gf
Stars: ✭ 27 (-72.73%)
Mutual labels:  bugbounty
request smuggler
Http request smuggling vulnerability scanner
Stars: ✭ 203 (+105.05%)
Mutual labels:  bugbounty
lit-bb-hack-tools
Little Bug Bounty & Hacking Tools⚔️
Stars: ✭ 180 (+81.82%)
Mutual labels:  bugbounty
WhoEnum
Mass querying whois records
Stars: ✭ 24 (-75.76%)
Mutual labels:  bugbounty
urldedupe
Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
Stars: ✭ 208 (+110.1%)
Mutual labels:  bugbounty
dora
Find exposed API keys based on RegEx and get exploitation methods for some of keys that are found
Stars: ✭ 229 (+131.31%)
Mutual labels:  bugbounty
PayloadsAll
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Stars: ✭ 31 (-68.69%)
Mutual labels:  bugbounty
goverview
goverview - Get an overview of the list of URLs
Stars: ✭ 93 (-6.06%)
Mutual labels:  bugbounty
bhedak
A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
Stars: ✭ 77 (-22.22%)
Mutual labels:  bugbounty
BurpSQLTruncSanner
Messy BurpSuite plugin for SQL Truncation vulnerabilities.
Stars: ✭ 53 (-46.46%)
Mutual labels:  bugbounty
Jasmin-Ransomware
Jasmin Ransomware is an advanced red team tool (WannaCry Clone) used for simulating real ransomware attacks. Jasmin helps security researchers to overcome the risk of external attacks.
Stars: ✭ 84 (-15.15%)
Mutual labels:  bugbounty
Sub-Drill
A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.
Stars: ✭ 70 (-29.29%)
Mutual labels:  bugbounty
fdnssearch
Swiftly search FDNS datasets from Rapid7 Open Data
Stars: ✭ 19 (-80.81%)
Mutual labels:  bugbounty
View All Similar Projects ➔

ghsec-jaeles-signatures

Author: @j3ssie

jaeles official repository and documentation: https://jaeles-project.github.io/

jaeles signatures by j3ssie: https://github.com/jaeles-project/jaeles-signatures

Signatures:

Reflect XSS

  • js-xss.yaml detects reflect XSS in js code and reflection in tags
  • simple-xss.yaml detects reflect XSS with <xsshere>

Errors and Vulnerabilities

  • ErrorsAndVulns.yaml detects errors and vulnerabilities
  1. sqli
  2. lfi
  3. ssti
  4. other

SSRF

  • ssrf.yaml need run with -p flag

Example: jaeles scan -u http://example.com/path?param=something -s ssrf.yaml -p "dest=yourServer"

LFI

  • lfi-Unix.yaml
  • lfi-windows.yaml

OS Command Injection

  • OS_command_injection.yaml

SSTI

  • Template-Injection.yaml

Twitter: @GochaOqradze

Donate me:

https://www.paypal.me/Okradze

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].