Ebryx / AES-Killer
Burp Plugin to decrypt AES encrypted traffic on the fly
☆635Updated 2 years ago
Related projects: ⓘ
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆705Updated 5 years ago
- TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.☆1,541Updated 3 months ago
- The new bridge between Burp Suite and Frida!☆1,612Updated 5 months ago
- Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).☆491Updated 2 years ago
- Automated HTTP Request Repeating With Burp Suite☆839Updated 2 years ago
- HackBar plugin for Burpsuite☆1,524Updated 3 years ago
- Advanced Burp Suite Logging Extension☆619Updated 3 months ago
- Another way to bypass WAF Cheat Sheet (draft)☆416Updated 5 years ago
- Java RMI enumeration and attack tool.☆710Updated 6 years ago
- TCP tunneling over HTTP/HTTPS for web application servers☆724Updated 8 years ago
- Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.☆997Updated 4 years ago
- A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.☆791Updated 2 months ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆603Updated 5 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆774Updated 2 years ago
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,382Updated 3 years ago
- Bypassing WAF by abusing SSL/TLS Ciphers☆302Updated 3 years ago
- HTTP file upload scanner for Burp Proxy☆479Updated 8 months ago
- Some of my exploits.☆572Updated 3 years ago
- A collection of curated Java Deserialization Exploits☆590Updated 3 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆572Updated 3 years ago
- Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.☆535Updated last year
- Proofs-of-concept☆751Updated 2 weeks ago
- A collection of pentest and development tips☆1,101Updated 2 years ago
- Extract endpoints from apk files.☆862Updated 2 years ago
- A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…☆421Updated 9 months ago
- ☆498Updated this week
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆666Updated last year
- SHELLING - a comprehensive OS command injection payload generator☆437Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,658Updated 4 months ago
- An Attempt to Port BlueKeep PoC from @Ekultek to actual exploits☆343Updated 3 years ago