Lists (1)
Stars
AutoRecon-XSS is a script designed for automated reconnaissance of XSS vulnerabilities. It crawls the target URL or alive domains, extracts potential vulnerable URLs, and checks them for XSS vulner…
A powerful asynchronous XSS scanner supporting up to 1,500 concurrent requests.
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
Pastebin-scraper tool leverages the API of https://psbdmp.ws/ to find emails/domains dumped in pastebin.
BSQLi de coffinxp réécrie en GO, son repos a été reporté en masse, il a donc été fermé.
🎯 Fast CORS misconfiguration vulnerabilities scanner
Selfhosted alternative to 12ft.io. and 1ft.io bypass paywalls with a proxy ladder and remove CORS headers from any URL
Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, ParameterMiner! Pipe in a list of javascript urls and ParameterMiner…
Get up and running with Llama 3.1, Mistral, Gemma 2, and other large language models.
Arsenal is just a quick inventory and launcher for hacking programs
PoC for leaking text nodes via CSS injection
A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.
Advanced SQL Injection Techniques for Bug Bounty Hunters
This tool will check for Sensitive Data Leakage with some useful patterns/RegEx. The patterns are mostly targeted on waybackdata and filter everything accordingly.
Openfire Console Authentication Bypass Vulnerability with RCE plugin
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
🌐 The Internet OS! Free, Open-Source, and Self-Hostable.