MetaFinder – Tool for Searching Documents in a Domain
Overview MetaFinder is a tool to find documents in a website or domain. This tool is using Search Engines (Google, Bing and Baidu) to Search for documents in a domain….
Read more »
Dirsearch – Web Content Discovery Scanner
To find known misconfigurations, juicy APIs or endpoints, sensitive data exposure, config file, etc. It could be used as a part of web content discovery, to scan passively for high-quality…
Read more »
IntruderPayloads – Collection of Burpsuite Intruder Payloads For Bug Hunting
IntruderPayloads A collection of Burpsuite Intruder payloads, BurpBounty payloads (https://github.com/wagiro/BurpBounty), fuzz lists and pentesting methodologies. To pull down all 3rd party repos, run install.sh in the same directory of the…
Read more »
EyeWitness – Tool to Take Screenshots of Websites With Server Header Info
EyeWitness EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known. EyeWitness is designed to run on Kali Linux. It will…
Read more »
Gospider – Web Crawling and Content Discovery Tool
Gospider Fast Web Spider Written in Go Gospider is a tool to perform website crawling. Features Fast web crawling Brute force and parse sitemap.xml Parse robots.txt Generate and verify link…
Read more »
Arjun – Tool to Find Query Parameters for URL Endpoints
What is Arjun? Arjun is a tool which can find query parameters for URL endpoints. If you don’t get what that means, it’s okay, read along. Web applications use parameters…
Read more »
Degoogle – Tool to Automate Google Dork Search on Target
Overview Degoogle is a automated tool to perform Google Dork search and extract result urls directly and also skip all the click-through links and other sketchiness. This tool also design…
Read more »