dotdotpwn
Fuzzer
A tool to discover directory traversal vulnerabilities in software
DotDotPwn - The Directory Traversal Fuzzer
997 stars
37 watching
178 forks
Language: Perl
last commit: about 3 years ago
Linked from 1 awesome list
fuzzerpenetration-testingperlsecuritytraversal
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 jcesarstef/dotdotslash | Automated tool to test website directory traversal vulnerabilities by injecting user-controlled input into URLs and analyzing responses. | 422 |
 google/oss-fuzz-vulns | Records disclosed OSS-Fuzz vulnerabilities and their impact on versions and commits | 138 |
 henshin/filebuster | A fast and flexible web application testing tool that uses brute-force methods to discover vulnerabilities | 213 |
 momenbasel/liffier | Automatically appends dot-dot-slash to URLs to test for path traversal vulnerabilities. | 8 |
| google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,110 |
 andresriancho/websocket-fuzzer | Automates the process of sending WebSocket messages to test application vulnerabilities | 144 |
 devanshbatham/openredirex | A tool for detecting open redirect vulnerabilities in web applications by modifying URLs and attempting to fetch them. | 718 |
 jtpereyda/boofuzz | A tool for generating and testing network protocol inputs to identify vulnerabilities | 2,057 |
 iromise/fans | Fuzzing tool to identify vulnerabilities in Android native system services. | 244 |
 1n3/intruderpayloads | A collection of tools and methodologies for identifying vulnerabilities in web applications | 3,698 |
 rootup/bfuzz | Automates browser testing with generated input payloads to identify vulnerabilities | 309 |
 jiangsir404/xss-sql-fuzz | Automates fuzzing of XSS and SQL injection vulnerabilities in web applications using Burp Suite extensions. | 61 |
| 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,545 |
 sefcom/witcher | A framework for fuzzing web applications to detect vulnerabilities like command and SQL injection | 78 |
 ghostlulzhacks/waybacksqliscanner | Scans URLs from the wayback machine and tests GET parameters for SQL injection vulnerabilities. | 187 |