BitTheByte / BitBlinderLinks
BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities
☆112Updated 2 years ago
Alternatives and similar repositories for BitBlinder
Users that are interested in BitBlinder are comparing it to the libraries listed below
Sorting:
- Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.☆38Updated 2 years ago
- Misc bounty and vulndisc things☆86Updated 4 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆52Updated 4 years ago
- ☆31Updated 4 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆48Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 5 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Updated 5 years ago
- Host Header Injection Checker☆83Updated 3 years ago
- ☆57Updated 5 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 6 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 5 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆93Updated 2 months ago
- Finds the End-Points in JavaScript files☆97Updated 3 years ago
- Some of my bug bounty tools☆52Updated 5 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆88Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 5 years ago
- My recon script☆50Updated 5 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆91Updated last year
- Generates target specific word lists for Fuzzing with fuff☆111Updated 5 years ago
- Recon Custom WordList Ganerator☆58Updated 5 years ago
- Push notifications for passive DNS data☆109Updated 9 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 6 years ago
- Get all possible href | src | url from target url or domain☆41Updated 5 years ago
- ☆108Updated 4 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 5 months ago
- A Broken-URL Checker☆81Updated 7 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 6 years ago
- ☆38Updated 5 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆72Updated 4 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago