Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+1421.51%)
CrawlergoA powerful dynamic crawler for web vulnerability scanners
Stars: ✭ 1,088 (+532.56%)
Defaultcreds Cheat SheetOne place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Stars: ✭ 1,949 (+1033.14%)
Differerdifferer finds how URLs are parsed by different languages in order to help bug hunters break filters
Stars: ✭ 56 (-67.44%)
Pentesting BibleLearn ethical hacking.Learn about reconnaissance,windows/linux hacking,attacking web technologies,and pen testing wireless networks.Resources for learning malware analysis and reverse engineering.
Stars: ✭ 8,981 (+5121.51%)
CorsmeCross Origin Resource Sharing MisConfiguration Scanner
Stars: ✭ 118 (-31.4%)
Pcwt Stars: ✭ 46 (-73.26%)
Security CheckerA PHP dependency vulnerabilities scanner based on the Security Advisories Database.
Stars: ✭ 115 (-33.14%)
M3m0M3m0 Tool ⚔️ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 124 (-27.91%)
GitgrabergitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...
Stars: ✭ 1,164 (+576.74%)
MobilehackersweaponsMobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 170 (-1.16%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (+494.19%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (-33.14%)
BbrAn open source tool to aid in command line driven generation of bug bounty reports based on user provided templates.
Stars: ✭ 142 (-17.44%)
BrutexAutomatically brute force all services running on a target.
Stars: ✭ 974 (+466.28%)
ArissploitArissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.
Stars: ✭ 114 (-33.72%)
TakeoverA tool for testing subdomain takeover possibilities at a mass scale.
Stars: ✭ 28 (-83.72%)
Jira ScanCVE-2017-9506 - SSRF
Stars: ✭ 159 (-7.56%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+415.7%)
Urlhuntera recon tool that allows searching on URLs that are exposed via shortener services
Stars: ✭ 934 (+443.02%)
QuiverQuiver is the tool to manage all of your tools for bug bounty hunting and penetration testing.
Stars: ✭ 140 (-18.6%)
XattackerX Attacker Tool ☣ Website Vulnerability Scanner & Auto Exploiter
Stars: ✭ 897 (+421.51%)
UddupUrls de-duplication tool for better recon.
Stars: ✭ 103 (-40.12%)
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (+359.88%)
Url TrackerChange monitoring app that checks the content of web pages in different periods.
Stars: ✭ 171 (-0.58%)
GospiderGospider - Fast web spider written in Go
Stars: ✭ 785 (+356.4%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+688.95%)
Rapidscan🆕 The Multi-Tool Web Vulnerability Scanner.
Stars: ✭ 775 (+350.58%)
Wpscan V3THIS REPOSITORY HAS BEEN MOVED TO https://github.com/wpscanteam/wpscan USE THAT!!!
Stars: ✭ 132 (-23.26%)
InterlaceEasily turn single threaded command line applications into a fast, multi-threaded application with CIDR and glob support.
Stars: ✭ 760 (+341.86%)
Gf SecretsSecret and/ credential patterns used for gf.
Stars: ✭ 96 (-44.19%)
CorsyCORS Misconfiguration Scanner
Stars: ✭ 756 (+339.53%)
Di.we.hRepositório com conteúdo sobre web hacking em português
Stars: ✭ 156 (-9.3%)
S3scannerScan for open AWS S3 buckets and dump the contents
Stars: ✭ 1,319 (+666.86%)
DomainedMulti Tool Subdomain Enumeration
Stars: ✭ 688 (+300%)
Poc T渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
Stars: ✭ 1,722 (+901.16%)
Pentest GuidePenetration tests guide based on OWASP including test cases, resources and examples.
Stars: ✭ 1,316 (+665.12%)
SuboverA Powerful Subdomain Takeover Tool
Stars: ✭ 607 (+252.91%)
Bountystrike ShPoor (rich?) man's bug bounty pipeline
Stars: ✭ 168 (-2.33%)
AcamarA Python3 based single-file subdomain enumerator
Stars: ✭ 89 (-48.26%)
SilverMass scan IPs for vulnerable services
Stars: ✭ 588 (+241.86%)
AsnipASN target organization IP range attack surface mapping for reconnaissance, fast and lightweight
Stars: ✭ 126 (-26.74%)
Xray一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Stars: ✭ 6,218 (+3515.12%)
RedcloudAutomated Red Team Infrastructure deployement using Docker
Stars: ✭ 551 (+220.35%)
ApkleaksScanning APK file for URIs, endpoints & secrets.
Stars: ✭ 2,707 (+1473.84%)
FindsploitFind exploits in local and online databases instantly
Stars: ✭ 1,160 (+574.42%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (+594.19%)
RaccoonA high performance offensive security tool for reconnaissance and vulnerability scanning
Stars: ✭ 2,312 (+1244.19%)
Tools TbhmTools of "The Bug Hunters Methodology V2 by @jhaddix"
Stars: ✭ 171 (-0.58%)
AsnlookupLeverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.
Stars: ✭ 163 (-5.23%)
Ssti Payloads🎯 Server Side Template Injection Payloads
Stars: ✭ 150 (-12.79%)