araselmir

araselmir's Stars

• ifconfig-me/Path-Traversal-Scanner

  Language:Python2610

• wapiti-scanner/wapiti

  Web vulnerability scanner written in Python3

  Language:Python1.2k176

• Ph33rr/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  2

• bitquark/shortscan

  An IIS short filename enumeration tool

  Language:Go72968

• ayoubfathi/leaky-paths

  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

  925152

• hisxo/gitGraber

  gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

  Language:Python2k329

• x1337loser/Dependency-Confusion

  All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)

  Language:Shell26734

• thewhiteh4t/FinalRecon

  All In One Web Recon

  Language:Python2.2k421

• the-robot/sqliv

  massive SQL injection vulnerability scanner

  Language:Python1.2k377

• JohnTroony/Blisqy

  Version 0.2 - Exploit Time-based blind-SQL injection in HTTP-Headers (MySQL/MariaDB).

  Language:Python354104

• zzzteph/sheye

  Opensource assets and vulnerability scanning tool

  Language:JavaScript14736

• xnl-h4ck3r/GAP-Burp-Extension

  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist

  Language:Python1.2k131

• 0xKayala/NucleiFuzzer

  NucleiFuzzer is a Powerful Automation tool for detecting XSS, SQLi, SSRF, Open-Redirect, etc.. Vulnerabilities in Web Applications

  Language:Shell1.2k186

• Impact-I/x8-Burp

  Hidden parameters discovery suite

  Language:Python22040

• NARKOZ/hacker-scripts

  Based on a true story

  Language:JavaScript47.5k6.7k

• NagliNagli/Shockwave-OSS

  738132

• stamparm/DSSS

  Damn Small SQLi Scanner

  Language:Python818194

• CiscoCXSecurity/bbqsql

  SQL Injection Exploitation Tool

  Language:Python713189

• jaeles-project/jaeles

  The Swiss Army knife for automated Web Application Testing

  Language:Go2.1k318

• digininja/CeWL

  CeWL is a Custom Word List Generator

  Language:Ruby1.9k255

• m4ll0k/Atlas

  Quick SQLMap Tamper Suggester

  Language:Python1.3k261

• synacktiv/eos

  Enemies Of Symfony - Debug mode Symfony looter

  Language:Python30442

• smxiazi/xia_sql

  xia SQL (瞎注) burp 插件 ，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。

  Language:Java92774

• RobertJonnyTiger/Blind-SQLi-Tool

  auto_SQLi, an automatic blind SQLi Tool that dumps tables from POST or GET requests.

  Language:Python7

• bambish/ScanQLi

  SQLi scanner to detect SQL vulns

  Language:Python18964

• 1N3/IntruderPayloads

  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

  Language:BlitzBasic3.6k1.2k

• ron190/jsql-injection

  jSQL Injection is a Java application for automatic SQL database injection.

  Language:Java1.5k411

• 1N3/Sn1per

  Attack Surface Management Platform

  Language:Shell7.9k1.8k

• TritonDataCenter/pkgsrc-legacy

  Automatically updated conversion of the "pkgsrc" module from anoncvs.netbsd.org

  Language:Makefile12764

• austinsonger/payloadsandlists

  Payloads and Lists

  Language:Python1911