Di-duo / HostAttackLinks

一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。

☆14

Alternatives and similar repositories for HostAttack

Users that are interested in HostAttack are comparing it to the libraries listed below

Sorting:

sulab999 / JsApiScan
一款扫描js中敏感api的burp插件
☆39Updated 2 years ago
hy0jer / HostScan
一款支持检测host头攻击的burp suite插件
☆54Updated last year
Conan924 / Bypass-Suite
BurpSuite extensions -Bypass Suite
☆26Updated last year
lu2ker / ApiHelper
一款BurpSuite插件，辅助手工测试
☆72Updated 2 years ago
darkfiv / QaFuzz
☆42Updated 6 months ago
rassec1 / Privilege-Escalation-Testing-Assistant
🔒 越权测试助手 (Privilege Escalation Testing Assistant)
☆16Updated 9 months ago
3xsh0re / FastAdmin-exp
快速测试是否存在FastAdmin框架相关漏洞
☆27Updated last year
eeeeeeeeee-code / AutoFuzzBurp
各类综合 upload_fuzz,smb_fuzz,tls绕过,被动指纹扫描
☆69Updated 6 months ago
qianxiao996 / BurpSuite-FrameScan
☆40Updated last year
youki992 / YonYouNCPocTool
用友NC漏洞批量检测工具，支持POC显示、单一检测、批量检测、结果导出、AI交互等
☆47Updated 3 months ago
A0WaQ4 / BurpCRLFScan
使用java编写的CRLF-Injection-burp被动扫描插件
☆47Updated 3 years ago
TuyaSecurity / SSRF-Auto
Burp-plugin
☆17Updated last year
xzajyjs / SpringBoot-whitelabel-error-rce-EXP
Spring Boot whitelabel error page SpEL rce EXP
☆13Updated last year
Yn8rt / Jssx
xss漏洞挖掘插件
☆36Updated 10 months ago
TFour123 / Webpack_Insight
用于提取Webpack打包的未加载的JavaScript文件，并扫描这些文件以查找敏感信息。
☆37Updated 3 months ago
kk12-30 / RouteVulScan_go
递归式主动检测脆弱路径的工具
☆16Updated 9 months ago
mumumumuo / RaceCondition
Burp条件竞争测试插件
☆26Updated 4 months ago
evilc0deooo / SwaggerHound
自动化检测 Swagger API 接口未授权访问漏洞工具
☆58Updated 9 months ago
LinBeiPolaris / PolarisScan
一款Google信息收集插件，包含域名，map，js等文件提取
☆24Updated 8 months ago
HackAllSec / FuzzDict
经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary
☆39Updated last year
xz-zone / burp_history
Burp Suite HTTP traffic monitoring & management extension for security testers
☆49Updated this week
hackerchuan1 / Unauthorized_VUl
一款最全未授权访问漏洞批量检测工具，集成40+常见未授权访问漏洞。
☆34Updated 5 months ago
ifacker / WIHscan
ARL 灯塔的 WIH 利用
☆32Updated last year
adeljck / HikInfoGet
海康威视iSecure后渗透
☆31Updated last year
phpcalm / exceed
一个功能强大的浏览器扩展程序，专门用于检测Web系统中的权限越权漏洞，适用于Web渗透测试。
☆43Updated 2 months ago
goddemondemongod / god_param
god_param
☆43Updated 2 years ago
J0o1ey / ssrf_proxy
ssrf_proxy
☆13Updated 2 years ago
goddemondemongod / god_bak
☆14Updated 2 years ago
wafinfo / MeterSphere-plugin-Backdoor
支持注入内存马和Bypass WAF
☆29Updated 2 years ago
J0o1ey / HiddenDomainHunter
HiddenDomainHunter
☆20Updated 2 years ago