URLBrute - Tool to Brute Forcing Website Sub-Domains and Directories

URLBrute – Tool to Brute Forcing Website Sub-Domains and Directories

Finding directory listing on system is very crucial, because with directory listing, maybe you can perform Local File Inclusion (LFI) attack. For sys-admin you have to check the permission on…

Read more »
Sifter Menu - OSINT, Recon & Vulnerability Scanner

Sifter – OSINT, Recon & Vulnerability Scanner

To perform information gathering, you don’t have to waste your time by doing that manually. With Sifter you can do automatically. And also you can scan the vulnerability on your…

Read more »
Exporter - Burp Suite Extension To Copy a Request To The Clipboard As Multiple Programming Languages Functions

Exporter – Burp Suite Extension To Copy a Request To The Clipboard As Multiple Programming Languages Functions

The main tools for bug hunting or penetration testing is Burp Suite. Most of bug hunter use Burp to capture a request and modify it. But you can add an…

Read more »
Wfuzz - best web application scanner

Wfuzz – Web Application Fuzzer

To find the vulnerabilities on web application you need use right tool to get accurate vulnerabilities. Wfuzz is one of best web application scanner tool, brute forcing directory, fuzzing POST…

Read more »
SQL injection payload list

SQL Injection Payload List

SQL Injection Payload List SQL Injection In this section, we’ll explain what SQL injection is, describe some common examples, explain how to find and exploit various kinds of SQL injection…

Read more »
DMC (deploy my code) - Upload Files To an ftp Server Without Any ftp-clients-min

DMCode – Tool That Allows You To Upload Your Code To an ftp Server Without Any ftp-clients

DMC (Deploy My Code) DMCode – like a deploy my code Allows you to upload your code to an ftp server without any ftp/sftp clients. why is this needed? for example, you…

Read more »
Burp Suite Extension to Discover Assets From HTTP Response xploitlab

BurpSuite Asset Discover – Burp Suite Extension to Discover Assets From HTTP Response

Burp Suite extension to discover assets from HTTP response using passive scanning. Passively parses HTTP response of the URLs in scope and identifies different type assets such as domain, subdomain, IP, S3 bucket etc.

Read more »