GitHub - epsylon/xsser: Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.
Web: https://xsser.03c8.net Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications. It provides several options to try to bypass certain filters and various special techniques for code injection. XSSer has pre-installed [ > 1300 XSS ] attacking vectors and can bypass-exploit code on several browsers/WAFs: [PHPIDS]:
GitHub - GerbenJavado/LinkFinder: A python script that finds endpoints in JavaScript files
LinkFinder is a python script written to discover endpoints and their parameters in JavaScript files. This way penetration testers and bug hunters are able to gather new, hidden endpoints on the websites they are testing. Resulting in new testing ground, possibility containing new vulnerabilities. It does so by using jsbeautifier for python in combination with a fairly large regular expression. Th
GitHub - s0md3v/Arjun: HTTP parameter discovery suite.
Arjun can find query parameters for URL endpoints. If you don't get what that means, it's okay, read along. Web applications use parameters (or queries) to accept user input, take the following example into consideration http://api.example.com/v1/userinfo?id=751634589 This URL seems to load user information for a specific user id, but what if there exists a parameter named admin which when set to
Welcome to SecurityTube.net
[Wi-Fi Attack-Defense] Wi-Fi Network Reconnaissance Ii by Securitytube_Poster, 4 years, 3 months ago 158091 Views [Wi-Fi Attack-Defense] Wi-Fi Network Reconnaissance by Securitytube_Poster, 4 years, 3 months ago 54137 Views [Wi-Fi Attack-Defense] Preferred Network List (Basics) by Securitytube_Poster, 4 years, 3 months ago 50384 Views Xor Ecx 0x00 What The Shellcode (Part 2) - James Haughom Jr. by
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
GitHub - chris408/ct-exposer: An OSINT tool that discovers sub-domains by searching Certificate Transparency logs
GitHub - tamilbotnet/qping: qping: qping is simple python tool for finding bunch of live subdomains.Generally subdomain enumeration tools (Eg. Sublister) provide a list that consists of both Live and down subdomains. Hence the user time will be wasted to
GitHub - SAP/credential-digger: A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock:
GitHub - josehelps/git-wild-hunt: A tool to hunt for credentials in github wild AKA git*hunt
GitHub - Acceis/leakScraper: LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gathering credentials belonging to t
GitHub - techgaun/github-dorks: Find leaked secrets via github search
GitHub - censys/censys-command-line: Command-line tool for Censys! Quickly investigate suspicious hosts or answer complex questions about your infrastructure using Censys right from the command-line!
GitHub - apg-intel/ipv6tools: IPv6Tools is a robust modular framework that enables the ability to visually audit an IPv6 enabled network.
GitHub - HamzaAnis/py-waybackurls: Mapping of https://github.com/tomnomnom/waybackurls in Python
GitHub - andripwn/waybackurl
How to Find Security Vulnerabilities in Python Application?
GitHub - hahwul/a2sv: Auto Scanning to SSL Vulnerability
GitHub - chaitin/xray: 一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
Installs pentesting tools, then symlinks them to be ran seamlessly.
GitHub - maurosoria/dirsearch: Web path scanner
GitHub - cheetz/sslScrape: SSLScrape | A scanning tool for scaping hostnames from SSL certificates.