Wfuzz – Web Application Fuzzer
To find the vulnerabilities on web application you need use right tool to get accurate vulnerabilities. Wfuzz is one of best web application scanner tool, brute forcing directory, fuzzing POST…
Read more »
SQL Injection Payload List
SQL Injection Payload List SQL Injection In this section, we’ll explain what SQL injection is, describe some common examples, explain how to find and exploit various kinds of SQL injection…
Read more »
DMCode – Tool That Allows You To Upload Your Code To an ftp Server Without Any ftp-clients
DMC (Deploy My Code) DMCode – like a deploy my code Allows you to upload your code to an ftp server without any ftp/sftp clients. why is this needed? for example, you…
Read more »
BurpSuite Asset Discover – Burp Suite Extension to Discover Assets From HTTP Response
Burp Suite extension to discover assets from HTTP response using passive scanning. Passively parses HTTP response of the URLs in scope and identifies different type assets such as domain, subdomain, IP, S3 bucket etc.
Read more »
Vulnx – Tool To Detect Vulnerabilities in Multiple Types of CMS and Automatic Exploit
Vulnx is An Intelligent Bot Auto Shell Injector that detect vulnerabilities in multiple types of CMS, informations gathering and vulnerabilitie Scanning.
Read more »
Local/Remote File Inclution (LFI/RFI) Payload List
I’ll give list of example code in PHP format to protecting your website and most importantly your code from a file inclusion (RFI/LFI) exploit.
Read more »
EyeWitness – Tool To Take Screenshots of Websites, Provide Server Header Info
EyeWitness is designed to take screenshots of websites provide some server header info, and identify default credentials if known.
Read more »