fimap
Web bug hunter
A tool for identifying and exploiting local and remote file inclusion bugs in web applications
fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion bugs in webapps.
519 stars
16 watching
99 forks
Language: Python
last commit: about 2 years ago
Linked from 1 awesome list
enaqx/awesome-pentestRelated projects:
| Repository | Description | Stars |
|---|---|---|
 orion-ai-lab/kurosiwo | A large-scale dataset and software framework for remote sensing-based flood mapping using SAR data | 39 |
 bugcrowd/hunt | An extension for Burp Suite that provides a structured approach to identifying and testing common vulnerability parameters. | 2,183 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 rafaelrinaldi/whereami | A command-line tool to retrieve geolocation information from an external API | 166 |
 m4ll0k/bbtz | A collection of tools and examples for hunting bugs in software applications | 1,720 |
 zt2/sqli-hunter | A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. | 423 |
 ricardojba/poi-slinger | Automatically identifies serialization issues in PHP applications by forcing them to perform DNS lookups with serialized objects | 42 |
 sh1yo/x8 | Tools for discovering hidden parameters in web applications | 1,691 |
 quarkslab/irma | An asynchronous analysis system for suspicious files | 269 |
 kraina-ai/quackosm | A tool for reading OpenStreetMap PBF files into a format suitable for geospatial analysis and integration with cloud stacks | 207 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,526 |
 anlominus/bug-bounty | A collection of curated resources and tools for bug bounty hunting and penetration testing | 377 |
 grimm-co/notquite0dayfriday | A collection of documented bugs in software to illustrate trends and improve detection methods. | 794 |
 iromise/fans | Fuzzing tool to identify vulnerabilities in Android native system services. | 242 |
 firefart/hijagger | A tool used to identify potential security vulnerabilities in package maintainers of NPM and PyPi packages by checking for unregistered domains or email addresses. | 286 |