web401
Follow
Stars
attacksurge / ax
Forked from pry0cc/axiomControl Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbitrary binaries and scripts using any of our eight supported cloud providers!
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
🔥 Web-application firewalls (WAFs) from security standpoint.
A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.
Burp Plugin to Bypass WAFs through the insertion of Junk Data
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
A tool for studying JavaScript malware.
Burp plugin able to find reflected XSS on page in real-time while browsing on site
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
Automation for internal Windows Penetrationtest / AD-Security
Adds a customizable "Send to..."-context-menu to your BurpSuite.
A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
An interactive cheatsheet tool for the command-line
Enumerate old versions of robots.txt paths using Wayback Machine for content discovery
Automated & Manual Wordlists provided by Assetnote
Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, build your taylor-made EASM tool, co…
🔱 Powerfull XSS Scanning and Parameter analysis tool&gem
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List