WebApp PenTest Archives • Page 7 of 38 • Cybersecurity News

HBSQLI: Automated Tool for Testing Header Based Blind SQL Injection Blind SQL Injection tool

HBSQLI: Automated Tool for Testing Header Based Blind SQL Injection

do son June 20, 2023

HBSQLI: Automated Tester For Header-Based Blind SQL Injection HBSQLI is an automated command-line tool for performing Header...

GCPGoat: A Damn Vulnerable GCP Infrastructure

do son June 16, 2023

GCPGoat: A Damn Vulnerable GCP Infrastructure Compromising an organization’s cloud infrastructure is like sitting on a gold...

deepsecrets v1.1.2 releases: a better tool for secret scanning

do son June 13, 2023

DeepSecrets – a better tool for secret scanning Yet another tool – why? Existing tools don’t really...

hiphp: create a BackDoor to control PHP-based sites PHP BackDoor

hiphp: create a BackDoor to control PHP-based sites

do son June 11, 2023

What is Hiphp? The HIPHP BackDoor is an open-source tool that allows for remote control of websites...

Bug Bounty Reconnaissance Framework: help you coordinate your reconnaissance workflows across multiple devices

do son May 31, 2023

Bug Bounty Reconnaissance Framework The Bug Bounty Reconnaissance Framework (BBRF) can be used to coordinate your reconnaissance...

iac-scan-runner: scans your Infrastructure as Code for common vulnerabilities scans Infrastructure as Code

iac-scan-runner: scans your Infrastructure as Code for common vulnerabilities

do son May 30, 2023

IaC Scan Runner The IaC Scanner is an inspection service that aims to scan IaC (Infrastructure as Code)...

goblob: fast enumeration tool for publicly exposed Azure Storage blobs

do son May 25, 2023

Goblob Goblob is a lightweight and fast enumeration tool designed to aid in the discovery of sensitive...

Afuzz: automated web path fuzzing tool

do son May 18, 2023

Afuzz – An automated web path fuzzing tool Afuzz is an automated web path fuzzing tool for...

Mantra: search for API keys in JavaScript files and HTML pages API key leaks

Mantra: search for API keys in JavaScript files and HTML pages

do son May 17, 2023

Mantra The tool in question was created in Go and its main objective is to search for...

SysReptor v2024.19 releases: Pentest Report Creator Pentest Reporting

SysReptor v2024.19 releases: Pentest Report Creator

do son May 14, 2023

SysReptor – Pentest Reporting Easy As Pie SysReptor is a fully customisable, offensive security reporting solution designed...

jsfinder: scans web pages to find JavaScript files linked in the HTML source code

do son May 10, 2023

jsFinder jsFinder is a command-line tool written in Go that scans web pages to find JavaScript files...

cloudtoolkit v0.1.3 releases: Cloud Penetration Testing Toolkit

do son May 7, 2023

cloudtoolkit Cloud Penetration Testing Toolkit Capability overview Providers Payload Supported Alibaba Cloud backdoor-user: Backdoored user can be...

Burp DOM Scanner: scan the webpage for DOM-based XSS DOM-based XSS scanner

Burp DOM Scanner: scan the webpage for DOM-based XSS

do son May 4, 2023

Burp DOM Scanner It’s a Burp Suite extension to allow for recursive crawling and scanning of Single...

XSS Exploitation Tool: the exploitation of Cross-Site Scripting vulnerabilities details_browser

XSS Exploitation Tool: the exploitation of Cross-Site Scripting vulnerabilities

do son April 30, 2023

XSS Exploitation Tool It is a penetration testing tool that focuses on the exploitation of Cross-Site Scripting...

LinkedInDumper: dump employee information from LinkedIn Voyager API LinkedIn Dumper

LinkedInDumper: dump employee information from LinkedIn Voyager API

do son April 30, 2023

LinkedInDumper Python 3 script to dump company employees from LinkedIn Voyager API. The results contain firstname, lastname,...