qsreplace - Tool to Replace All Query String Values With User Suplied Value

QSreplace – Tool to Replace All Query String Values With User Suplied Value

qsreplace Accept URLs on stdin, replace all query string values with a user-supplied value, only output each combination of query string parameters once per host and path. Install With Go:…

Read more »
reconFTW - Tool to Perform Automated Scanning and Finding Vulnerabilities

reconFTW – Tool to Perform Automated Scan and Finding Vulnerabilities

Overview ReconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities. ReconFTW automates the…

Read more »
Waybackurls - Extract All URLs From a Domain

Waybackurls – Extract All URLs From a Domain

waybackurls waybackurls is tool that can fetch all the URLs that the Wayback Machine knows about for a domain. Accept line-delimited domains on stdin, fetch known URLs from the Wayback…

Read more »
DalFox Rest API server mode - Powerful Automated XSS Scanning Tool And Parameter Analyzer

DalFox – Powerful Automated XSS Scanning Tool And Parameter Analyzer

Dalfox XSS Tool DalFox is an powerful automated XSS scanning tool and parameter analyzer and utility that fast the process of detecting and verify XSS flaws. It comes with a…

Read more »
LazyCSRF - More Powerful CSRF PoC Generator on Burp Suite

LazyCSRF – More Powerful CSRF PoC Generator on Burp Suite

LazyCSRF LazyCSRF is a more useful CSRF PoC generator on Burp Suite extentions/plugins. It is more accurate and powerfull than regular CSRF PoC extentions on Burp Suite. Motivation Burp Suite…

Read more »
PHP Malware Finder - Detect Potentially Malicious PHP Files

PHP Malware Finder – Detect Potentially Malicious PHP Files

What does it detect? PHP-malware-finder does its very best to detect obfuscated/dodgy code as well as files using PHP functions often used in malwares/webshells. The following list of encoders/obfuscators/webshells are…

Read more »
Second-Order---Subdomain-Takeover-Scanner-Tool

Second Order – Subdomain Takeover Scanner

Overview Scans web applications for second-order subdomain takeover by crawling the app, and collecting URLs (and other data) that match certain rules, or respond in a certain way. Installation From…

Read more »