6h4ack / IDOR-Scanner
IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify IDOR vulnerabilities in web applications. 🚀
☆35Updated 2 months ago
Alternatives and similar repositories for IDOR-Scanner:
Users that are interested in IDOR-Scanner are comparing it to the libraries listed below
- dnsprober is a fast and multipurpose DNS reconnaissance tool designed for efficient DNS probing and enumeration. It supports multiple DNS…☆30Updated last month
- Grep subdomains from web pages.☆42Updated 2 months ago
- Url scrapper or extractor from alienvault☆33Updated last month
- Zzl is a reconnaissance tool that collects subdomains from SSL certificates in IP ranges☆39Updated 5 months ago
- SAPLAR - LFI & Path Traversal Scanner☆14Updated last month
- Passive Web Vulnerability Detection Tool☆31Updated 3 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 5 months ago
- ☆34Updated 4 months ago
- A collaborative hub for Nuclei templates. Contribute, share, and explore powerful vulnerability detection tools!☆25Updated 2 months ago
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆41Updated 5 months ago
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆30Updated 9 months ago
- Bypass Reset Password Code Lead to Account Takeover☆25Updated 7 months ago
- A basic tool to check for XSS vulnerabilities. It takes a list of URLs and checks if the parameter values appear in the response.☆28Updated 8 months ago
- Morgan is a powerful tool designed to help security researchers, developers, and security auditors identify sensitive information, vulner…☆54Updated 2 months ago
- reverse engineered and improved BSQLi script from Coffinxp☆12Updated 7 months ago
- This script is used to search for cloud certificate entities such as Amazon, Azure, and others that have been extracted by the kaeferjaeg…☆42Updated 4 months ago
- This Python script automates the process of identifying vulnerabilities in Firebase configurations extracted from APK files.☆40Updated 3 weeks ago
- CVE-2024-28955 Exploitation PoC☆34Updated 9 months ago
- ☆51Updated 2 months ago
- This repository contains the best fuzzing wordlist files☆29Updated 4 months ago
- CrlfiX☆19Updated 2 months ago
- Probuster : A Python based Web Application Penetration testing tool for Information Gathering⚡.☆60Updated 5 months ago
- ex-param is an automated tool designed for finding reflected parameters for XSS vulnerabilities. It crawls a target website, extracts GET…☆55Updated 2 months ago
- ☆49Updated 10 months ago
- External recon toolkit☆48Updated 3 months ago
- Argus is used to test for Blind XSS and SSRF vulnerbilities or any sort of OOB detection☆13Updated 5 months ago
- DomainTrail is a fast subdomain enumeration tool that uses effective passive and active techniques.☆40Updated last year
- SQLi Hunter is a tool designed to find potential SQL injection vulnerabilities by fetching URLs from the Wayback Machine and checking for…☆13Updated 2 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆73Updated 3 weeks ago
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆59Updated 7 months ago