ResourcesNo description or website provided.
Stars: ✭ 38 (-95.2%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+12.14%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+23.14%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (-26.3%)
0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (-84.96%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (+29.2%)
AtscanAdvanced dork Search & Mass Exploit Scanner
Stars: ✭ 817 (+3.29%)
CorsmeCross Origin Resource Sharing MisConfiguration Scanner
Stars: ✭ 118 (-85.08%)
NosqlmapAutomated NoSQL database enumeration and web application exploitation tool.
Stars: ✭ 1,928 (+143.74%)
RenginereNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous monitoring, backed by a database, and simple yet intuitive User Interface. reNgine makes it easy for penetration testers to gather reconnaissance with…
Stars: ✭ 3,439 (+334.77%)
Scopelintscopelint checks for unpinned variables in go programs
Stars: ✭ 110 (-86.09%)
Security ToolsCollection of small security tools, mostly in Bash and Python. CTFs, Bug Bounty and other stuff.
Stars: ✭ 509 (-35.65%)
Recon PipelineAn automated target reconnaissance pipeline.
Stars: ✭ 278 (-64.85%)
QuickxssAutomating XSS using Bash
Stars: ✭ 113 (-85.71%)
Pythempentest framework
Stars: ✭ 1,060 (+34.01%)
JaelesThe Swiss Army knife for automated Web Application Testing
Stars: ✭ 1,073 (+35.65%)
BerserkerA list of useful payloads for Web Application Security and Pentest/CTF
Stars: ✭ 212 (-73.2%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+7.08%)
Jira-LensFast and customizable vulnerability scanner For JIRA written in Python
Stars: ✭ 185 (-76.61%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (-86.73%)
request smugglerHttp request smuggling vulnerability scanner
Stars: ✭ 203 (-74.34%)
EagleMultithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Stars: ✭ 85 (-89.25%)
jsleaka Go code to detect leaks in JS files via regex patterns
Stars: ✭ 111 (-85.97%)
cf-checkCloudFlare Checker written in Go
Stars: ✭ 147 (-81.42%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (-60.81%)
BxssbXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Stars: ✭ 331 (-58.15%)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (+23.26%)
WssatWEB SERVICE SECURITY ASSESSMENT TOOL
Stars: ✭ 360 (-54.49%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+816.06%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (-85.46%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+230.85%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (-62.83%)
RichgoEnrich `go test` outputs with text decorations.
Stars: ✭ 544 (-31.23%)
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (+52.34%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 859 (+8.6%)
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (-78.51%)
WascanWAScan - Web Application Scanner
Stars: ✭ 1,895 (+139.57%)
Typo3scanScans TYPO3 extensions for usage of deprecated and or changed code
Stars: ✭ 83 (-89.51%)
nuubiNuubi Tools (Information-ghatering|Scanner|Recon.)
Stars: ✭ 76 (-90.39%)
goghGO GitHub project manager
Stars: ✭ 29 (-96.33%)
tugareconPentest: Subdomains enumeration tool for penetration testers.
Stars: ✭ 142 (-82.05%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (-39.57%)
SudomySudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting
Stars: ✭ 1,572 (+98.74%)
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (-89.38%)
Graphql Rest ProxyTurn your REST API into GraphQL - A Proxy Server that pipes request from GraphQL to REST with GraphQL DSL, performant nested children, mutations, input types, and more.
Stars: ✭ 218 (-72.44%)
ArachniWeb Application Security Scanner Framework
Stars: ✭ 2,942 (+271.93%)
VhostscanA virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, aliases and dynamic default pages.
Stars: ✭ 767 (-3.03%)
Xss PayloadsList of advanced XSS payloads
Stars: ✭ 696 (-12.01%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (-3.92%)
K8cscanK8Cscan大型内网渗透自定义插件化扫描神器,包含信息收集、网络资产、漏洞扫描、密码爆破、漏洞利用,程序采用多线程批量扫描大型内网多个IP段C段主机,目前插件包含: C段旁注扫描、子域名扫描、Ftp密码爆破、Mysql密码爆破、Oracle密码爆破、MSSQL密码爆破、Windows/Linux系统密码爆破、存活主机扫描、端口扫描、Web信息探测、操作系统版本探测、Cisco思科设备扫描等,支持调用任意外部程序或脚本,支持Cobalt Strike联动
Stars: ✭ 693 (-12.39%)
ParamspiderMining parameters from dark corners of Web Archives
Stars: ✭ 781 (-1.26%)
AllaboutbugbountyAll about bug bounty (bypasses, payloads, and etc)
Stars: ✭ 758 (-4.17%)
DomainedMulti Tool Subdomain Enumeration
Stars: ✭ 688 (-13.02%)
WpscanWPScan WordPress security scanner. Written for security professionals and blog maintainers to test the security of their WordPress websites.
Stars: ✭ 6,244 (+689.38%)