CompassSecurity / SAMLRaiderLinks
SAML2 Burp Extension
☆427Updated 2 months ago
Alternatives and similar repositories for SAMLRaider
Users that are interested in SAMLRaider are comparing it to the libraries listed below
Sorting:
- REST/JSON API to the Burp Suite security tool.☆563Updated last month
- The request.bin of DNS request☆235Updated 7 years ago
- AWS Extender (Cloud Storage Tester) is a Burp plugin to assess permissions of cloud storage containers on AWS, Google Cloud and Azure.☆252Updated 3 years ago
- Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.☆210Updated last year
- Automate security tests using Burp Suite.☆229Updated last year
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆289Updated 7 months ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆356Updated 4 years ago
- SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.☆470Updated 7 years ago
- WS-Attacker is a modular framework for web services penetration testing. It is developed by the Chair of Network and Data Security, Ruhr …☆485Updated 10 months ago
- Fuzzapi is a tool used for REST API pentesting and uses API_Fuzzer gem☆663Updated 4 years ago
- Probe a rendering engine for vulnerabilities and other features☆367Updated 3 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Updated 3 years ago
- Burp extension to perform Java Deserialization Attacks☆214Updated last year
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆263Updated 3 years ago
- API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities☆399Updated 8 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆292Updated 2 years ago
- This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtu…☆633Updated 6 years ago
- Parse OpenAPI documents into Burp Suite for automating OpenAPI-based APIs security assessments (approved by PortSwigger for inclusion in …☆204Updated last year
- A set of tools made to assist in penetration testing GWT applications. Additional details about these tools can be found on my OWASP Apps…☆235Updated 5 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆582Updated 3 years ago
- A mini webserver with FTP support for XXE payloads☆332Updated last year
- A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…☆435Updated 4 months ago
- Utils☆273Updated 9 years ago
- A tool geared towards pentesting APIs using OpenAPI definitions.☆179Updated 2 years ago
- All my infosec notes I have been building up over the years☆336Updated 6 months ago
- CMS/LMS/Library etc Versions Fingerprinter☆257Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated 2 years ago
- XXE Out of Band Server.☆170Updated 2 years ago
- XPath injection tool☆393Updated 2 years ago
- A security scanner for HTTP response headers.☆301Updated 7 months ago