WebHackersWeapons
interactsh
Our great sponsors
WebHackersWeapons | interactsh | |
---|---|---|
1 | 9 | |
3,617 | 3,021 | |
- | 4.6% | |
8.5 | 9.3 | |
12 days ago | 4 days ago | |
Ruby | Go | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
WebHackersWeapons
We haven't tracked posts mentioning WebHackersWeapons yet.
Tracking mentions began in Dec 2020.
interactsh
-
Burp Suite Pro Alternatives
Setup yourself: https://github.com/projectdiscovery/interactsh https://github.com/redfast00/malidate https://github.com/ettic-team/dnsbin https://github.com/allyomalley/dnsobserver
-
Create own Burp Collaborator?
Yes, it’s possible to do, fairly easily if you have some sysadmin experience. However, Collaborator offers all of it on one package ready to go, so it saves time (and time is money, not just a saying). That said, you can use something like https://github.com/projectdiscovery/interactsh as an alternative.
-
LinkBait - The Privacy, Security, & OSINT Show – Episode 187
I haven't listened to the episode yet, but based on the description it sounds very similar to various projects like interactsh. You can play around with it for free on https://app.interactsh.com. Take a look, it might be enough for your needs.
-
Log4Shell Log4j vulnerability (CVE-2021-44228) – cheat-sheet reference guide
https://github.com/projectdiscovery/interactsh
They seem to exfiltrate data. If you see these files hosted in your projects, then you are probably part of it now.
What are some alternatives?
urlhunter - a recon tool that allows searching on URLs that are exposed via shortener services
go-dork - The fastest dork scanner written in Go.
Apache Log4j 2 - Apache Log4j 2 is a versatile, feature-rich, efficient logging API and backend for Java.
log4shell - Operational information regarding the log4shell vulnerabilities in the Log4j logging library.
dnsbin - The request.bin of DNS request
hetty - An HTTP toolkit for security research.
ppmap - A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.
Logout4Shell - Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
ssti-payloads - 🎯 Server Side Template Injection Payloads
LinkBait
jdk8u - https://wiki.openjdk.org/display/jdk8u
malidate - A logging DNS and HTTP(S) server. Opensource alternative to some parts of the Burpsuite Collaborator server.