Anof-cyber / PyCript
Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
☆204Updated 2 months ago
Alternatives and similar repositories for PyCript:
Users that are interested in PyCript are comparing it to the libraries listed below
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 10 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆241Updated 2 weeks ago
- Subdomains analysis and generation tool. Reveal the hidden!☆237Updated 3 weeks ago
- Enumerate / Dump Docker Registry☆173Updated 11 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆370Updated this week
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆353Updated last year
- Session Hijacking Visual Exploitation☆197Updated last year
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- exploit for f5-big-ip RCE cve-2023-46747☆204Updated 5 months ago
- Text4Shell scanner for Burp Suite☆189Updated 2 years ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Ghostscript command injection vulnerability PoC (CVE-2023-36664)☆116Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆367Updated last week
- Burpsuite plugin for Interact.sh☆217Updated 9 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆155Updated 4 months ago
- BChecks collection for Burp Suite Professional☆96Updated 9 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆78Updated last year
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆267Updated 11 months ago
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆280Updated 7 months ago
- Repository to store exploits created by Assetnotes Security Research team☆176Updated last year
- Local File Inclusion discovery and exploitation tool☆294Updated 3 months ago
- ☆76Updated 10 months ago
- Source Code Management Attack Toolkit☆214Updated 2 years ago
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆99Updated 2 weeks ago
- RCE exploit for dompdf☆178Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- CVE-2023-25157 - GeoServer SQL Injection - PoC☆166Updated last year
- Reverse shell listener and payload generator designed to work on most Linux targets☆106Updated 7 months ago
- CVE-2024-4367 & CVE-2024-34342 Proof of Concept☆154Updated 9 months ago
- CVE-2023-33733 reportlab RCE☆114Updated last year