Captain-K-101 / Ssrf-labs

Related projects: ⓘ

• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• imhunterand / subton
  ☆29Updated this week
• KeepHowling / all_freaking_nuclei_templates
  Every Nuclei template that has ever appeared on Github
  ☆23Updated 2 years ago
• System00-Security / findbbprograms
  Check if domain has bug bounty program or not
  ☆28Updated last year
• z3dc0ps / BBSSRF
  BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
  ☆38Updated last year
• DevanshRaghav75 / NoSQL_injection_stuff
  Learn what is NoSQL injection and how to find them ?
  ☆11Updated 3 years ago
• cyberaz0r / Burp-IISTildeEnumerationScanner
  Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
  ☆54Updated last year
• gwen001 / google-search
  Returns results from Google search.
  ☆48Updated last year
• PushpenderIndia / Log4jScanner
  Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.
  ☆39Updated 2 years ago
• emadshanab / Some-BugBounty-Tips-from-my-Twitter-feed
  ☆34Updated 2 years ago
• dn9uy3n / Check-WP-CVE-2020-35489
  The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
  ☆30Updated 5 months ago
• samirettali / bounty-notes
  My bug bounty notes
  ☆29Updated 3 years ago
• dk4trin / templates-nuclei
  ☆17Updated 6 months ago
• akincibor / 403-bypass
  Enhanced 403 bypass header
  ☆21Updated 2 years ago
• Ph33rr / Tools-Tips
  ☆14Updated 2 years ago
• ap062 / bba
  bug bounty automation
  ☆12Updated 3 years ago
• BrownBearSec / Utils-and-Wrappers
  A repo for tools, utils, and wrappers that are to small to put in their own repo.
  ☆23Updated last year
• medbsq / ncl
  nuclei framework scripts
  ☆30Updated 2 years ago
• omarhashem123 / Security-Research
  This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research
  ☆41Updated last year
• emadshanab / Burp-Bounty-free-Profiles-Collection
  ☆43Updated 3 years ago
• Dheerajmadhukar / subzzZ
  SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.
  ☆37Updated 3 years ago
• r00tkie / grep-pattern
  collection of various grep patterns collected from tomnomnom/gf and other places
  ☆20Updated 3 years ago
• ThatNotEasy / CVE-2023-34960
  Perform with Massive Command Injection (Chamilo)
  ☆19Updated last year
• melbadry9 / WhoEnum
  Mass querying whois records
  ☆30Updated 2 years ago
• ethicalhackingplayground / erebus-templates
  Community curated list of templates for the erebus engine to find security vulnerabilities.
  ☆16Updated 3 years ago
• System00-Security / backflow
  Private vulnerability testing suite
  ☆13Updated 3 years ago
• onurgule / S4S-Scanner
  Spring4Shell Burp Scanner
  ☆65Updated 2 years ago
• seanmarpo / webjars-swagger-xss
  PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
  ☆52Updated last year
• rook1337 / googlecertfarm
  ☆10Updated 2 years ago
• zeronine9 / Blind_SPOT
  Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI
  ☆27Updated 3 years ago