reewardius

venom-1

venom - shellcode generator/compiler/handler (metasploit)

cookiemonster

🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.

bbToolz

bbDomains.txt

XSS-Scanner

XSS scanner that detects Cross-Site Scripting vulnerabilities in website by injecting malicious scripts

desktop-pentest

dirsearch

Web path scanner

what-pentest

blazor-pentest

SSTIMAP

TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines for eight different programming languages.

golismero

GoLismero - The Web Knife

fav-up

IP lookup by favicon using Shodan

httpscan

Multithreaded HTTP scanner

ssrf-exploit

LeakSearch

Search & Parse Password Leaks

Burp-Suite-Certified-Practitioner-Exam-Study

Burp Suite Certified Practitioner Exam Study

bypass-url-parser

bypass-url-parser

hfinder

Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE

wbku

check_mdi

check_bitrix

Check bitrix vulnerabilities

viewstate-exploit

ruby_deserialize_explot

cloudflare-origin-ip

Try to find the origin IP of a webapp protected by Cloudflare.

vhost-brute

Virtual host detection tool.

WAF

nextjs-grab-js-files

blind-sql-injection-detector

DockerExploit

Docker Remote API Scanner and Exploit

iis-pentest