
SQLbit – Script for Automatize Boolean-Based Blind SQL Injections
SQL Blind Injection Tool Just another script for automatize boolean-based blind SQL injections. Works with SQLite at least, supports using cookies. It uses bitwise comparisons with multithreading to find cell…
Read more »
Gxss – Tool to Check URLs That Contain Reflecting Params
Gxss Gxss is a tool to check a bunch of URLs that contain reflecting params. This a light weight tool for checking reflecting Parameters in a URL. Inspired by kxss by @tomnomnom. How…
Read more »
QSreplace – Tool to Replace All Query String Values With User Suplied Value
qsreplace Accept URLs on stdin, replace all query string values with a user-supplied value, only output each combination of query string parameters once per host and path. Install With Go:…
Read more »
reconFTW – Tool to Perform Automated Scan and Finding Vulnerabilities
Overview ReconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities. ReconFTW automates the…
Read more »
Octosuite – Advanced Github OSINT Framework
About Advanced Github OSINT Framework Simply gather OSINT on Github users & organizations like a God Features Fetches organization info Fetches user info Fetches repository info Returns contents of a…
Read more »
EvilSelenium – Tool That Weaponizes Selenium to Attack Chromium Based Browsers
EvilSelenium EvilSelenium is a new project that weaponizes Selenium to abuse Chromium-based browsers. The current features right now are: Steal stored credentials (via autofill) Steal cookies Take screenshots of websites Dump Gmail/O365…
Read more »
Waybackurls – Extract All URLs From a Domain
waybackurls waybackurls is tool that can fetch all the URLs that the Wayback Machine knows about for a domain. Accept line-delimited domains on stdin, fetch known URLs from the Wayback…
Read more »