ParamPamPam is a tool for detecting and exploiting vulnerabilities in web applications. It uses a combination of techniques such as fuzzing, SQL injection, and cross-site scripting to identify vulnerabilities. ParamPamPam is designed to be easy to use and requires minimal configuration. It is available on GitHub and is open-source.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.
An OSINT tool that generates username lists for companies on LinkedIn for social engineering attacks or security testing purposes.
A fully customizable, offensive security reporting solution for pentesters, red teamers, and other security professionals.
LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.
Web inventory tool that captures screenshots of webpages and includes additional features for enhanced usability.
A LinkedIn reconnaissance tool for gathering information about companies and individuals on the platform.
Crt.sh is a website that allows users to search for SSL/TLS certificates of a targeted domain, providing transparency into certificate logs.
Automate Google Hacking Database scraping and searching with Pagodo, a tool for finding vulnerabilities and sensitive information.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.