fimap
Web bug hunter
A tool for identifying and exploiting local and remote file inclusion bugs in web applications
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
525 stars
16 watching
99 forks
Language: Python
last commit: over 2 years ago
Linked from 1 awesome list
enaqx/awesome-pentestRelated projects:
| Repository | Description | Stars |
|---|---|---|
 orion-ai-lab/kurosiwo | A large-scale dataset and software framework for remote sensing-based flood mapping using SAR data | 44 |
 bugcrowd/hunt | An extension for Burp Suite that provides a structured approach to identifying and testing common vulnerability parameters. | 2,192 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 587 |
 rafaelrinaldi/whereami | A command-line tool to retrieve geolocation information from an external API | 168 |
 m4ll0k/bbtz | A collection of tools and examples for hunting bugs in software applications | 1,725 |
 zt2/sqli-hunter | A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. | 425 |
 ricardojba/poi-slinger | Automatically identifies serialization issues in PHP applications by forcing them to perform DNS lookups with serialized objects | 42 |
 sh1yo/x8 | Tools for discovering hidden parameters in web applications | 1,715 |
 quarkslab/irma | An asynchronous analysis system for suspicious files | 268 |
 kraina-ai/quackosm | A tool for reading OpenStreetMap PBF files into a format suitable for geospatial analysis and integration with cloud stacks | 219 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,545 |
 anlominus/bug-bounty | A collection of curated resources and tools for bug bounty hunting and penetration testing | 390 |
 grimm-co/notquite0dayfriday | A collection of documented bugs in software to illustrate trends and improve detection methods. | 797 |
 iromise/fans | Fuzzing tool to identify vulnerabilities in Android native system services. | 244 |
 firefart/hijagger | A tool used to identify potential security vulnerabilities in package maintainers of NPM and PyPi packages by checking for unregistered domains or email addresses. | 288 |