Repository navigation

#

web-penetration-testing

thewhiteh4t/FinalRecon
thewhiteh4t / FinalRecon 

All In One Web Recon

Pythonpentestingpentest-toolpentesting-toolswebpentestreconnaissanceweb-reconnaissanceweb-penetration-testingssl-certificatetraceroutewhois爬虫headerssubdomain-enumerationport-scanning
Python
2524
5 个月前
0xInfection / TIDoS-Framework 

The Offensive Manual Web Application Penetration Testing Framework.

web-penetration-testingreconnaissanceOSINTvulnerability-detectionfootprintingintelligence-gatheringexploitationweb-application-securityenumeration
Python
1839
2 年前
t3l3machus/toxssin
t3l3machus / toxssin 

An XSS exploitation command-line interface and payload generator.

cross-site-scriptingexploitationJavaScriptpenetration-testingpentesting-toolsPythonweb-penetration-testingxss-exploitationxss-vulnerabilityHackingxss
Python
1396
9 个月前
ivan-sincek / penetration-testing-cheat-sheet 

Work in progress...

Bug Bountyethical-hackingoffensive-securitypenetration-testingred-team-engagement安全Webweb-penetration-testingenumerationopen-source-intelligenceOSINTreconnaissancevulnerability-scanningexploitation
PHP
754
4 个月前
ivan-sincek / php-reverse-shell 

PHP shells that work on Linux OS, macOS, and Windows OS.

PHPreverse-tcpreverse-shellNetworkethical-hacking安全offensive-securityWindowsLinuxmacOSoscpweb-shellred-team-engagementpenetration-testingWebweb-penetration-testingtcpbind-shell
PHP
508
2 年前
ivan-sincek / forbidden 

Bypass 4xx HTTP response status codes and more. The tool is based on Python Requests, PycURL, and HTTP Client.

ethical-hackingoffensive-securitypenetration-testing安全Webweb-penetration-testingBug Bounty403brute-forcebypasscURLowasp-top-10Pythonred-team-engagementFuzzing/Fuzz testingpycurlpython-requests
Python
247
13 天前
Hunterdii / TryHackMe-Roadmap 

Hello, aspiring hackers! 🕵️‍♂️ Here’s a list of 500+ Free TryHackMe rooms to kickstart your cybersecurity journey. These rooms are absolutely free, and I’ve organized them by topic to help you dive in right away. 🛠️

active-directoryAndroidctf-challengescyber-securityfreeHackingLinuxmalware-analysisNetwork逆向工程Steganographytryhackmeweb-penetration-testingwifi-hackingWindowsgood-first-issue
204
1 个月前
D4Vinci / Clickjacking-Tester 

A python script designed to check if the website if vulnerable of clickjacking and create a poc

pocpython-scriptclickjackingweb-penetration-testingbugBug Bounty
Python
151
5 年前
Nabil-Official / N-WEB 

WEB PENETRATION TESTING TOOL 💥

WebWeb appwebscannerscannerweb-toolsWordPressadmin-scannernmapweb-penetration-testing
Python
86
3 年前
t3l3machus / OWASP-Testing-Guide-Checklist 

OWASP based Web Application Security Testing Checklist

owasppentestingweb-penetration-testingWeb app
78
1 年前
ivan-sincek / java-reverse-tcp 

JAR, Java, and JSP shells that work on Linux OS, macOS, and Windows OS.

安全Networkreverse-shellJavaoffensive-securityethical-hackingbind-shellreverse-tcpweb-shelllog4jred-team-engagementBug Bountypenetration-testingWebweb-penetration-testing
Java
64
2 年前
AngixBlack / Corscan 

Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts

Test automationBug Bountybugbounty-toolCross-origin resource sharing (CORS)cors-vulnerabilityvulnerability-detectionvulnerability-scannersweb-penetration-testingwebpentestwebsecurity
Python
63
4 个月前
pentagridsec / PentagridScanController 

Improve automated and semi-automated active scanning in Burp Pro

burp-extensionsburp-pluginowaspweb-scannerpentesting-toolweb-penetration-testing
Kotlin
62
4 个月前
pentagridsec / PentagridScanController 

Improve automated and semi-automated active scanning in Burp Pro

burp-extensionsburp-pluginowaspweb-scannerpentesting-toolweb-penetration-testing
Kotlin
62
4 个月前
sil3ntH4ck3r / WebVulnLab 

Herramienta donde puedes practicar las vulnerabilidades web más conocidas. Email: info@webvulnlab.org

HackinglaboratorypentestingPHPwebhackingweb-penetration-testing
PHP
61
12 天前
MrPr0fessor / Google-Dorks-for-Cross-site-Scripting-XSS 

Cross-Site Scripting (XSS) injects malicious scripts into trusted websites via user input. Attacker-sent scripts run in users' browsers, accessing sensitive data, cookies, and even altering HTML content. Widespread due to input validation lapses.

cross-site-scriptingcybercyber-securityethical-hacking-toolsgoogle-dorkspenetration-testing-toolsvulnerability-assessmentvulnerability-detectionvulnerability-scannersweb-application-securityweb-penetration-testingxssxss-payloadsxss-vulnerability
58
2 年前
shadforth / pentesterlab-bootcamp 

My notes on PentesterLab's Bootcamp series 🕵️

pentesterlabpenetration-testingPythonweb-penetration-testingPHPbootcampHacktoberfest
Python
46
2 年前
ivan-sincek / xss-catcher 

Simple API for storing all incoming XSS requests and various XSS templates.

PHPAPIJavaScriptcross-site-scriptingethical-hacking安全offensive-securityred-team-engagementBug BountyCross-origin resource sharing (CORS)cross-origin-resource-sharingcsrfpenetration-testingWebweb-penetration-testingxss
HTML
46
1 年前
zAbuQasem / MyNotes 

My notes from courses,books ..etc

penetration-testingnotesred-teamactive-directoryowasp-top-10web-penetration-testingcheatsheet
Open Policy Agent
44
20 天前
an4kein / _sql_injections 

Hello my friends, it is my repo about sql injections. Call me in Telegram: @anakein

HackingblackhatinjectionsqlinjectionsqliredteamreadteamingpentestpentestingWebweb-penetration-testingwebhackingoscposcp-preposcp-journeyextract
43
5 年前