Anof-cyber / Pentest-MapperView external linksLinks
A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabilities
☆120Aug 2, 2023Updated 2 years ago
Alternatives and similar repositories for Pentest-Mapper
Users that are interested in Pentest-Mapper are comparing it to the libraries listed below
Sorting:
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- Bug Bounty statistics tool.☆33Nov 17, 2022Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆185Nov 22, 2021Updated 4 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆394Feb 4, 2026Updated last week
- ☆47Apr 18, 2023Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆373Jul 25, 2023Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,038Aug 23, 2025Updated 5 months ago
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆119Nov 23, 2023Updated 2 years ago
- A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CON…☆163Mar 27, 2024Updated last year
- A path-normalization pentesting tool.☆150Jan 22, 2026Updated 3 weeks ago
- CobaltStrike Extentions☆40Oct 24, 2021Updated 4 years ago
- ☆19Mar 16, 2021Updated 4 years ago
- Cross-Site Scripting (XSS) vulnerability analyzer☆21Updated this week
- Wireless Pentesting Device☆24Aug 14, 2020Updated 5 years ago
- oneliner commands for bug bounties☆459Jul 25, 2022Updated 3 years ago
- Automated blind-xss search for Burp Suite☆285Oct 10, 2019Updated 6 years ago
- A repository that includes all the important wordlists used while bug hunting.☆1,375Mar 11, 2023Updated 2 years ago
- ☆11May 30, 2021Updated 4 years ago
- Server and avi file to exploit FFmpeg HLS parse☆22Jun 26, 2019Updated 6 years ago
- Web application recon for bug bounty☆21Apr 19, 2020Updated 5 years ago
- Automated learning of regexes for DNS discovery☆389Feb 18, 2023Updated 2 years ago
- Real world bug bounty wordlists☆116Jul 20, 2023Updated 2 years ago
- Top disclosed reports from HackerOne☆161Apr 15, 2021Updated 4 years ago
- XSS payloads designed to turn alert(1) into P1☆1,389Sep 12, 2023Updated 2 years ago
- A python tool used to discover endpoints, potential parameters, a target specific wordlist for a given target and secrets☆1,515Jan 15, 2026Updated last month
- Discover new target domains using Content Security Policy☆501Feb 7, 2026Updated last week
- Extract JavaScript files from burp suite project with ease.☆97Feb 19, 2022Updated 3 years ago
- Authorization-Nuclei-Templates☆39Sep 16, 2024Updated last year
- 一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。☆13Mar 7, 2025Updated 11 months ago
- A pentesting Firefox spy extension - PoC☆10Jun 16, 2016Updated 9 years ago
- Python Reverse Shell Builder with some advanced functionalities☆10Feb 16, 2021Updated 5 years ago
- An python script that use apkleaks to scan the android application over web☆11Jun 2, 2022Updated 3 years ago
- A Productivity-Boosting Burp Suite extension written in Kotlin that enables persistent sticky session handling in web application testing…☆12Oct 8, 2025Updated 4 months ago
- Prototype for an in memory fuzzer☆13Aug 1, 2017Updated 8 years ago
- Gitlab CI/CD Templates for build,test,deploy to your infra☆12Aug 15, 2024Updated last year
- ThinkPHP 3.2.X POC Report By 风起☆12Apr 24, 2023Updated 2 years ago
- Google Workspace password sprayer with anti-captcha☆14Nov 15, 2025Updated 3 months ago
- Uses Go net/http library to distinguish alive hosts from a give list of hosts/urls☆12Dec 23, 2019Updated 6 years ago
- Filter URLs that match your scope file for bugbounty.☆11May 23, 2023Updated 2 years ago