github-starred/awesome-bugbounty-tools
2
0
Fork 0
mirror of https://github.com/vavkamil/awesome-bugbounty-tools.git synced 2026-03-11 17:48:08 -05:00
Code Issues 2 Packages Projects Releases Wiki Activity

Merge pull request #77 from vavkamil/vavkamil/deps

Browse Source 
chore(tools): Update list & dependencies
This commit is contained in:
Kamil Vavra
2026-02-01 12:27:34 +01:00
committed by GitHub
parent 1b5e3557e2 d04fcd47e5
commit eb769ad5f6
4 changed files with 9 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
.github/workflows/security-zizmor.yml vendored
View File

@@ -21,12 +21,12 @@ jobs:
steps:
- name: Checkout repository
uses: actions/checkout@v6.0.1
uses: actions/checkout@v6.0.2 # zizmor: ignore[unpinned-uses]
with:
persist-credentials: false
- name: Set up Python
uses: actions/setup-python@v6
uses: actions/setup-python@v6 # zizmor: ignore[unpinned-uses]
with:
python-version: '3.10.4'

2
.github/workflows/stargazers.yml vendored
View File

@@ -15,7 +15,7 @@ jobs:
steps:
- name: Checkout repository
uses: actions/checkout@v6.0.1
uses: actions/checkout@v6.0.2 # zizmor: ignore[unpinned-uses]
with:
fetch-depth: 0
persist-credentials: false

15
README.md
View File

@@ -15,7 +15,7 @@
- [Parameters](#Parameters)
- [Fuzzing](#Fuzzing)
- [Monitoring](#Monitoring)
- [Waf Evasion ](#Waf-Evasion)
- [Waf Evasion](#Waf-Evasion)
- [Exploitation](#Exploitation)
- [Command Injection](#Command-Injection)
@@ -394,25 +394,20 @@
- [metahttp](https://github.com/vp777/metahttp) - A bash script that automates the scanning of a target network for HTTP resources through XXE
### SSTI Injection
- [tplmap](https://github.com/epinna/tplmap) - Server-Side Template Injection and Code Injection Detection and Exploitation Tool
- [SSTImap](https://github.com/vladko312/SSTImap) - Automatic SSTI detection tool with interactive interface
### Web-Cache-Poisoning
- [toxicache](https://github.com/xhzeem/toxicache) - Go scanner to find web cache poisoning vulnerabilities in a list of URLs .
---
### Waf Evasion
- cli :
- [nomore403](https://github.com/devploit/nomore403) - 🚫 Advanced tool for security researchers to bypass 403/40X restrictions .
- [nomore403](https://github.com/devploit/nomore403) - Advanced tool for security researchers to bypass 403/40X restrictions .
- [XFFenum](https://github.com/vavkamil/XFFenum) - A simple tool to bypass 403 forbidden end-points behind load balancers (Cloudflare) based on X-Forwarded-For header.
- [Forbidden Buster](https://github.com/Sn1r/Forbidden-Buster) - A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas in the system.
- burpSuite Plugin :
- [nowafpls](https://github.com/assetnote/nowafpls/) - Burp Plugin to Bypass WAFs through the insertion of Junk Data .
- [nowafpls](https://github.com/assetnote/nowafpls/) - Burp Plugin to Bypass WAFs through the insertion of Junk Data.
---

2
requirements.txt
View File

@@ -1 +1 @@
zizmor==1.19.0
zizmor==1.22.0