A bash script that automates the scanning of a target network for HTTP resources through XXE. This script is designed to be used in a penetration testing or vulnerability assessment scenario. It uses the `curl` command to send HTTP requests to a target network and extracts information about the resources found. The script also includes some basic filtering and sorting options to make it easier to analyze the results. This script is intended for use by experienced penetration testers and vulnerability assessors. Please note that this script is for educational purposes only and should not be used to scan networks without permission.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A website scanner that provides a sandbox for the web, allowing users to scan URLs and websites for potential threats and vulnerabilities.
WireGuard is a fast, simple, and secure VPN that uses cutting-edge cryptography, designed for ease of use and performance.
A free DNS recursive service that blocks malicious host names and protects user privacy.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
A TCP-based traceroute implementation that bypasses firewall filters to trace the path to a destination.
Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.