Ebryx / AES-Killer
Burp Plugin to decrypt AES encrypted traffic on the fly
☆636Updated 2 years ago
Alternatives and similar repositories for AES-Killer:
Users that are interested in AES-Killer are comparing it to the libraries listed below
- The new bridge between Burp Suite and Frida!☆1,688Updated 11 months ago
- TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.☆1,599Updated 9 months ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆719Updated 5 years ago
- Automated HTTP Request Repeating With Burp Suite☆870Updated 3 years ago
- Extract endpoints from apk files.☆871Updated 3 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆602Updated 5 years ago
- Another way to bypass WAF Cheat Sheet (draft)☆420Updated 6 years ago
- A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, written in Python.☆1,427Updated 3 years ago
- Advanced Burp Suite Logging Extension☆645Updated 9 months ago
- HTTP file upload scanner for Burp Proxy☆488Updated last year
- Awesome Burp Suite Resources. 400+ open source Burp plugins, 400+ posts and videos.☆1,023Updated 5 years ago
- Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).☆498Updated 3 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆574Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆514Updated 4 years ago
- Bypassing WAF by abusing SSL/TLS Ciphers☆312Updated 3 years ago
- HackBar plugin for Burpsuite☆1,562Updated 3 years ago
- C2Hack, sharing tips and tricks for pentesters☆176Updated 8 months ago
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆834Updated last week
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆779Updated 3 years ago
- A collection of curated Java Deserialization Exploits☆593Updated 3 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆426Updated 2 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆594Updated 4 years ago
- A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…☆433Updated last year
- Pentest/BugBounty progress control with scanning modules☆281Updated 4 years ago
- Lesser Known Web Attack Lab☆330Updated 5 years ago
- An Attempt to Port BlueKeep PoC from @Ekultek to actual exploits☆345Updated 4 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆622Updated last year
- Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (…☆313Updated 5 years ago
- ☆468Updated last year
- TCP tunneling over HTTP/HTTPS for web application servers☆733Updated 8 years ago