SSRFHunter
☆18Jan 17, 2026Updated 5 months ago
Alternatives and similar repositories for SSRFHunter
Users that are interested in SSRFHunter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆96May 11, 2026Updated 2 months ago
- DevSecOps for the AI-era CI/CD pipeline. Catches the bugs your AI coding assistant introduces — before they reach production.☆20Updated this week
- Burp Suite extension — passively detects secrets, API keys, credentials, JWTs & PII in HTTP traffic. 160+ detection rules, bulk scan, ent…☆34May 15, 2026Updated 2 months ago
- My Main App Hacking CheckList☆31Jun 20, 2026Updated 3 weeks ago
- Mass Hunting & Exploitation PoC for CVE-2025-55182 & CVE-2025-66478☆37Dec 7, 2025Updated 7 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- Fast Go-based XSS assessment toolkit☆20Mar 18, 2026Updated 3 months ago
- Unofficial MCP server for accessing your HackerOne reports, programs, scope, and earnings from Claude Code☆40Apr 1, 2026Updated 3 months ago
- Collection of cybersecurity and ethical hacking roadmaps from beginner to advanced, curated by CYBER MIND SPACE.☆65Jun 20, 2025Updated last year
- Open-source passive reconnaissance and exposure discovery tool that leverages VirusTotal and the Wayback Machine to uncover subdomains, U…☆146Jun 23, 2026Updated 3 weeks ago
- NextSSRF — CVE-2026-44578 Scanner & Exploit ║ ║ Next.js WebSocket Upgrade Handler SSRF☆75May 15, 2026Updated 2 months ago
- Collection of documentation, tools, and tips related to vulnerability research.☆94Updated this week
- A full-stack web application that aggregates all HackerOne bug bounty programs that have source code repositories (GitHub, GitLab, Bitbuc…☆17Mar 16, 2026Updated 4 months ago
- ☆78May 5, 2025Updated last year
- JS+ is a browser extension that captures JS URLs from specified domains and scans them with AI.☆22Mar 16, 2026Updated 4 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Detection for CVE-2025-61675, CVE-2025-61678 & CVE-2025-66039☆47Dec 15, 2025Updated 7 months ago
- A comprehensive WordPress vulnerability scanner and exploitation framework for authorized penetration testing. This tool automatically de…☆70May 21, 2026Updated last month
- mattew crawls target websites, extracts hidden attack surface, runs security analysis, fingerprints technology, and generates professiona…☆17Jul 2, 2026Updated 2 weeks ago
- This lab is for **EDUCATIONAL PURPOSES ONLY**. Use it responsibly and only on systems you own or have explicit permission to test. Do not…☆21Feb 20, 2026Updated 4 months ago
- An Automated Framework for End-to-End Blind XSS Detection and Reporting☆17Jan 23, 2026Updated 5 months ago
- Rust-powered HTTP Request Smuggling Scanner.☆125Updated this week
- ☆157Jan 22, 2026Updated 5 months ago
- Burpsuite Extension for Jsmon☆25Jul 1, 2026Updated 2 weeks ago
- Burp extension to log requests and responses to PostgreSQL☆16Jun 30, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A simple HAR-based JavaScript recon automation kit for organizing JS files, endpoints, secrets, and gf-filtered attack surface during bug…☆16May 20, 2026Updated last month
- ☆44May 4, 2025Updated last year
- TokenTwin Checker — Dual Token BAC/IDOR Tester for Burp Suite☆85Jun 28, 2026Updated 2 weeks ago
- burpsuite extension to analyze javascript files using semgrep☆13Feb 3, 2025Updated last year
- My ATO Via Password Reset Methodology☆53May 13, 2026Updated 2 months ago
- ☆13Apr 6, 2022Updated 4 years ago
- ☆20Apr 27, 2026Updated 2 months ago
- ☆22Aug 9, 2025Updated 11 months ago
- Stealth hybrid URL mapper☆17May 1, 2026Updated 2 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 哪吒网络安全是一款高性能终端 UI (TUI) 应用,专为从事红队演练、渗透测试和漏洞研究的网络安全专业人员打造。本应用作为智能指挥控制界面,利用 DeepSeek 大语言模型提供实时流式对话、基于函数调用 (Function Calling) 的自动化工具编排,以及多智能…☆21May 28, 2026Updated last month
- The malicious IdP you were looking for. A weaponized Single Sign-On (SSO) Identity Provider (IdP) for security testing of OIDC and SAML 2…☆39Jun 6, 2026Updated last month
- Burp extension to increment a parameter in each active scan request☆13Jul 16, 2025Updated last year
- 一款支持检测web应用程序未授权访问缺陷的burp suite插件,可自定义配置检测字段以及返回包json数据分析☆13Apr 22, 2024Updated 2 years ago
- Burp plugin for jxscout☆22May 12, 2025Updated last year
- A curated collection of my security research and bug bounty writeups, documenting real-world vulnerabilities, exploitation methods☆20Jun 29, 2026Updated 2 weeks ago
- parse ffuf & map endpoints to wordlists☆21Feb 25, 2021Updated 5 years ago