0l4bsCross-site scripting labs for web application security enthusiasts
Stars: ✭ 119 (+5.31%)
GxssA tool to check a bunch of URLs that contain reflecting params.
Stars: ✭ 115 (+1.77%)
Dalfox🌘🦊 DalFox(Finder Of XSS) / Parameter Analysis and XSS Scanning tool based on golang
Stars: ✭ 791 (+600%)
BxssbXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
Stars: ✭ 331 (+192.92%)
EagleMultithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
Stars: ✭ 85 (-24.78%)
xssfinderToolset for detecting reflected xss in websites
Stars: ✭ 105 (-7.08%)
magicReconMagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way in directories and with various formats.
Stars: ✭ 478 (+323.01%)
Reconky-Automated Bash ScriptReconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.
Stars: ✭ 167 (+47.79%)
ReconftwreconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
Stars: ✭ 974 (+761.95%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+684.96%)
PinaakA vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan
Stars: ✭ 69 (-38.94%)
XspearPowerfull XSS Scanning and Parameter analysis tool&gem
Stars: ✭ 583 (+415.93%)
Findom XssA fast DOM based XSS vulnerability scanner with simplicity.
Stars: ✭ 310 (+174.34%)
Xss Payload List🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
Stars: ✭ 2,617 (+2215.93%)
PastebinMarkdownXSSXSS in pastebin.com and reddit.com via unsanitized markdown output
Stars: ✭ 84 (-25.66%)
bhedakA replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.
Stars: ✭ 77 (-31.86%)
GarudAn automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and scans for some low hanging vulnerabilities automatically.
Stars: ✭ 183 (+61.95%)
vafVaf is a cross-platform very advanced and fast web fuzzer written in nim
Stars: ✭ 294 (+160.18%)
ResourcesNo description or website provided.
Stars: ✭ 38 (-66.37%)
Tiny Xss PayloadsA collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
Stars: ✭ 975 (+762.83%)
EzxssezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
Stars: ✭ 1,022 (+804.42%)
Bash UtilityBash library which provides utility functions and helpers for functional programming in Bash.
Stars: ✭ 92 (-18.58%)
Gnome Dash FixSort GNOME apps dashboard by category.
Stars: ✭ 92 (-18.58%)
UddupUrls de-duplication tool for better recon.
Stars: ✭ 103 (-8.85%)
Crlf Injection ScannerCommand line tool for testing CRLF injection on a list of domains.
Stars: ✭ 91 (-19.47%)
Collection DocumentCollection of quality safety articles. Awesome articles.
Stars: ✭ 1,387 (+1127.43%)
XsstrikeMost advanced XSS scanner.
Stars: ✭ 9,822 (+8592.04%)
AcamarA Python3 based single-file subdomain enumerator
Stars: ✭ 89 (-21.24%)
ArchtorifyTransparent proxy through Tor for Arch Linux OS
Stars: ✭ 100 (-11.5%)
CspGiven a list of hosts, this small utility fetches all whitelisted domains from the hosts' CSPs.
Stars: ✭ 89 (-21.24%)
ShurikenCross-Site Scripting (XSS) command line tool for testing lists of XSS payloads on web apps.
Stars: ✭ 114 (+0.88%)
Pwd.shGPG symmetric password manager
Stars: ✭ 1,468 (+1199.12%)
Nuclei TemplatesCommunity curated list of templates for the nuclei engine to find security vulnerabilities.
Stars: ✭ 1,354 (+1098.23%)
SourcecodesnifferThe Source Code Sniffer is a poor man’s static code analysis tool (SCA) that leverages regular expressions. Designed to highlight high risk functions (Injection, LFI/RFI, file uploads etc) across multiple languages (ASP, Java, CSharp, PHP, Perl, Python, JavaScript, HTML etc) in a highly configurable manner.
Stars: ✭ 87 (-23.01%)
Pornhub DownloaderBash Script for downloading content from PornHub (the easy way)
Stars: ✭ 87 (-23.01%)
Tmux XpanesAwesome tmux-based terminal divider
Stars: ✭ 1,370 (+1112.39%)
DekstereconWeb Application recon automation
Stars: ✭ 109 (-3.54%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+1107.08%)
Memcache InfoSimple and efficient way to show information about Memcache.
Stars: ✭ 84 (-25.66%)
I3lock Fancyi3lock script that takes a screenshot of the desktop, blurs the background and adds a lock icon and text
Stars: ✭ 1,249 (+1005.31%)
ArlARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
Stars: ✭ 1,357 (+1100.88%)
CryptrA simple shell utility for encrypting and decrypting files using OpenSSL.
Stars: ✭ 81 (-28.32%)
Webhackersweapons⚔️ Web Hacker's Weapons / A collection of cool tools used by Web hackers. Happy hacking , Happy bug-hunting
Stars: ✭ 1,205 (+966.37%)
IuvoltScript to undervolt Intel CPUs
Stars: ✭ 114 (+0.88%)
WhereamiA short shell script that returns you your IPv4 address and its geolocation.
Stars: ✭ 108 (-4.42%)
PlexusA suite of tools to help manage your media collection.
Stars: ✭ 78 (-30.97%)
ScottyHelper scripts for GitHub Enterprise admins
Stars: ✭ 77 (-31.86%)
Gf SecretsSecret and/ credential patterns used for gf.
Stars: ✭ 96 (-15.04%)
Git GudA simple git commit checker
Stars: ✭ 77 (-31.86%)
SubjackSubdomain Takeover tool written in Go
Stars: ✭ 1,194 (+956.64%)
PillagerA wget script that makes pillaging websites much easier.
Stars: ✭ 107 (-5.31%)