Dancas93 / SSRF-Scanner
A Complete SSRF (Server Side Request Forgery) Scanner.
☆32Updated last month
Alternatives and similar repositories for SSRF-Scanner:
Users that are interested in SSRF-Scanner are comparing it to the libraries listed below
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- ☆25Updated 4 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆44Updated last year
- Authorization-Nuclei-Templates☆38Updated 6 months ago
- ☆43Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- ☆37Updated last year
- Check if domain has bug bounty program or not☆27Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆49Updated 3 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆59Updated 2 years ago
- ☆68Updated 2 years ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆58Updated last year
- ☆36Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆53Updated 5 months ago
- A repository to host the subdomain wordlists from my blog https://medium.com/@nynan/what-i-learnt-from-reading-217-subdomain-takeover-bug…☆40Updated 2 years ago
- Write-ups of All types Bugs☆19Updated 2 years ago
- Spring4Shell Burp Scanner☆71Updated 2 years ago
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Nuclei template and information about the POC for CVE-2024-25600☆28Updated last year
- Simple script realizado en bash, para revisión de múltiples hosts para CVE-2022-1388 (F5)☆25Updated 2 years ago
- Web cache poisoning vulnerability scanner.☆65Updated 2 years ago
- ParamFirstCheck identifies in a list of urls those containing a parameter of the top 25 of the most vulnerable parameters for SQLi, LFI, …☆34Updated last year
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆30Updated 11 months ago
- A powerful bash script for massive XSS scanning leveraging Brute Logic's KNOXSS API☆70Updated 2 months ago
- XSS Finder Via SSTI☆54Updated last year