Audi-1 / Awesome-Red-Teaming

Related projects ⓘ

Alternatives and complementary repositories for Awesome-Red-Teaming

• PortSwigger / xss-validator
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆86Updated 2 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆58Updated 6 years ago
• p3n73st3r / Ghazi
  Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…
  ☆109Updated 5 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆118Updated 4 years ago
• PortSwigger / j2ee-scan
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆72Updated 3 years ago
• PortSwigger / sqli-py
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆88Updated last year
• profmoriarity / rexsser
  This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
  ☆75Updated 4 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆139Updated 5 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆245Updated 3 years ago
• Mad-robot / wordpress-exploits
  All known and unknown public POC's for wordpress themes and plugins
  ☆78Updated 3 years ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆82Updated 2 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆105Updated 2 years ago
• topavankumarj / CORS-Exploit-Script
  ☆39Updated last year
• DrunkenShells / Disclosures
  Public Disclosures
  ☆88Updated 2 years ago
• masahiro331 / CVE-2020-9484
  ☆128Updated 3 years ago
• Al1ex / Awesome-Pentest
  Collection of penetration testing tools
  ☆80Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• StefanMichielse / generate_xxe_payloads
  This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…
  ☆32Updated 8 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆59Updated 8 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆61Updated 4 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆41Updated last year
• alita-ido / PHP-File-Writer
  ☆25Updated 4 years ago
• BugHunterID / HackerOneDB
  The unofficial HackerOne disclosure Timeline
  ☆135Updated 5 years ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆82Updated 4 years ago
• vavkamil / XSSwagger
  A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks
  ☆55Updated 5 years ago
• emadshanab / facebook-bug-bounty-writeups
  Facebook Bug Bounties
  ☆101Updated 3 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 5 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 2 years ago
• LucaBongiorni / XSS.png
  A XSS mind map ;)
  ☆56Updated 8 years ago