parameter – PentestTools

ReconNote – Web Application Security Automation Framework

November 13, 2020

[sc name=”ad_1″] Web Application Security Recon Automation Framework It takes user input as a domain name and maximize the attack surface area by...

Vulnerability Analysis

Parth – Heuristic Vulnerable Parameter Scanner

August 25, 2020

Add Comment

[sc name=”ad_1″] Some HTTP parameter names are more commonly associated with one functionality than the others. For example, the parameter ?url=...

RMIScout - Wordlist And Bruteforce Strategies To Enumerate Java RMI Functions And Exploit RMI Parameter Unmarshalling Vulnerabilities

Password Attacks

RMIScout – Wordlist & Bruteforce Strategies To Enumerate Java RMI Functions

June 11, 2020

Add Comment

[sc name=”ad_1″] RMIScout performs wordlist and bruteforce attacks against exposed Java RMI interfaces to safely guess method signatures without...

DalFox (Finder Of XSS) - Parameter Analysis And XSS Scanning Tool Based On Golang

Exploitation Tools • Vulnerability Analysis

DalFox – Parameter Analysis And XSS Scanning Tool Based On Golang

May 14, 2020

Add Comment

[sc name=”ad_1″] Finder Of XSS, and Dal is the Korean pronunciation of moon. What is DalFox Just, XSS Scanning and Parameter Analysis tool. I...

Exploitation Tools

Dolos Cloak – Automated 802.1X Bypass

September 20, 2019

Add Comment

[sc name=”ad_1″] Dolos Cloak is a python script designed to help network penetration testers and red teamers bypass 802.1x solutions by using an...

Information Gathering

Arjun v1.1 – HTTP Parameter Discovery Suite

November 21, 2018

Add Comment

Features Multi-threading 3 modes of detection Regex powered heuristic scanning Huge list of 3370 parameter names Usage Note: Arjun doesn’t work with...

Exploitation Tools • Vulnerability Analysis

XSStrike v3.0 – Most Advanced XSS Detection Suite

October 28, 2018

Add Comment

Why XSStrike? Every XSS scanner out there has a list of payloads, they inject the payloads and if the payload is reflected into the webpage, it is declared...

Vulnerability Analysis

TLS-Scanner – The TLS-Scanner Module From TLS-Attacker

October 24, 2018

Add Comment

TLS-Scanner is a tool created by the Chair for Network and Data Security from the Ruhr-University Bochum to assist pentesters and security researchers in the...

Exploitation Tools

Pentest-Machine – Automates Some Pentest Jobs Via Nmap Xml File

October 17, 2018

Add Comment

Automates some pentesting work via an nmap XML file. As soon as each command finishes it writes its output to the terminal and the files in output-by-service/...

Vulnerability Analysis

XXRF Shots – Tool to Test SSRF Vulnerabilities

October 17, 2018

Add Comment

What is SSRF vulnerability? Server Side Request Forgery (SSRF) is a type of vulnerability class where attacker sends crafted request from a vulnerable web...

Tag - parameter

ReconNote – Web Application Security Automation Framework

Parth – Heuristic Vulnerable Parameter Scanner

RMIScout – Wordlist & Bruteforce Strategies To Enumerate Java RMI Functions

DalFox – Parameter Analysis And XSS Scanning Tool Based On Golang

Dolos Cloak – Automated 802.1X Bypass

Arjun v1.1 – HTTP Parameter Discovery Suite

XSStrike v3.0 – Most Advanced XSS Detection Suite

TLS-Scanner – The TLS-Scanner Module From TLS-Attacker

Pentest-Machine – Automates Some Pentest Jobs Via Nmap Xml File

XXRF Shots – Tool to Test SSRF Vulnerabilities

Topics