Cross-Site Scripting (XSS) is a prevalent and dangerous web application vulnerability. XSStrike is a cutting-edge tool designed to detect and exploit XSS vulnerabilities more effectively than traditional tools. This guide will provide an overview of XSStrike's features and explain how to install and use it.
Sublist3r is a Python tool designed to enumerate subdomains of websites using OSINT (Open Source Intelligence). It helps penetration testers and bug hunters collect and gather subdomains for the domain they are targeting. Sublist3r enumerates subdomains using many search engines such as Google, Yahoo, Bing, Baidu, and Ask.
Fuxploider is an open-source penetration testing tool designed to automate the detection and exploitation of file upload form vulnerabilities. It can identify allowed file types and determine the most effective technique for uploading web shells or malicious files to a targeted web server.
rang3r is a Python 2.7 script designed to scan multiple threads, finding all alive hosts within a specified range. It includes a port scanner that targets the most vulnerable ports. The tool is optimized for speed and efficiency.
GatheTOOL is an information-gathering tool that utilizes the hackertarget.com API for various reconnaissance tasks.
SiteBroker is a cross-platform Python-based utility designed for information gathering and penetration automation. This tool provides a variety of features to help in assessing and testing the security of websites.
Devploit is a simple Python script designed for information gathering. This tool, authored by Joker-Security [dev-labs], offers a range of functionalities to aid in the collection and analysis of various data points related to network and web security.
Zphisher is a beginner-friendly automated phishing tool equipped with 30+ templates for various login pages. It offers multiple features and installation options, making it easy to use for both beginners and advanced users.
Weeman is an HTTP server for phishing written in Python. This is a copy of the original Hypsurus/weeman repository, as the complete account was removed. All credits go to Hypsurus and the contributors of this project.
GoldenEye is a Python 3 application designed for security testing purposes only. It is an HTTP Denial of Service (DoS) test tool.