#安全#sqlmap 是一个开源的渗透测试工具,可以用来自动化的检测,利用SQL注入漏洞,获取数据库服务器的权限。它具有功能强大的检测引擎,针对各种不同类型数据库的渗透测试的功能选项,包括获取数据库中存储的数据,访问操作系统文件甚至可以通过带外数据连接的方式执行操作系统命令。
Automated All-in-One OS Command Injection Exploitation Tool.
翻译 - 自动化的多合一OS命令注入和利用工具。
File upload vulnerability scanner and exploitation tool.
Subdomain Takeover tool written in Go
翻译 - Go编写的子域接管工具
A Powerful Subdomain Takeover Tool
DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
翻译 - DNSTake — 检查可能导致子域接管的丢失的托管 DNS 区域的快速工具
A phased, evasive Path Traversal + LFI scanning & exploitation tool in Python
Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.
Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities
OK now. Let's hijack github user's custom domain.
A multi-cloud DNS record scanner that aims to help cybersecurity/IT analysts identify dangling CNAME records in their cloud DNS services that could possibly lead to subdomain takeover scenarios.
A tool for testing subdomain takeover possibilities at a mass scale.
Socket takeover from one process to another
Distributed is a wrapper module that helps developers to make distributed, scaled, replicated and fault-tolerant (with takeover ability) leader-follower systems.
A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
#安全#Fast and customizable Blind SQL vulnerability scanner based on simple xor payloads.
Automatic SQL injection and database takeover tool.