cariddi Logo

cariddi

0
Free
Visit Website

Take a list of domains, crawl URLs and scan for endpoints, secrets, API keys, file extensions, tokens and more. A tool for security researchers and penetration testers to automate the process of finding sensitive information on a target domain.

FEATURES

ALTERNATIVES

A penetration testing tool that focuses on web browser exploitation

A full-featured reconnaissance framework for web-based reconnaissance with a modular design.

A powerful enumeration tool for discovering assets and subdomains.

A CRLF and open redirect fuzzer

A practical guide on NTLM relaying for Active Directory attacks.

A tool for recursively querying webservers

A Python library for exploiting race conditions in web apps

Ivy is a payload creation framework for executing arbitrary VBA source code directly in memory, utilizing programmatical access to load, decrypt, and execute shellcode.

PINNED