GoSecure / 44con-code-review-workshop
References, tools and sample payloads
☆10Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for 44con-code-review-workshop
- Python tool for expired domain discovery in crossdomain.xml files☆22Updated 7 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- PHP tool to test XSS☆23Updated 5 years ago
- ☆35Updated 4 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Generate pentest reports based on github issues.☆17Updated last year
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- ☆20Updated 5 years ago
- Utilities for creating Burp Suite Extensions.☆21Updated 3 weeks ago
- A Pythonic wrapper to MassDNS☆23Updated 6 years ago
- Burp Suite Professional extension in Java for Tabnabbing attack☆13Updated 6 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- A simple grep user interface for searching code which can be used for SAST.☆8Updated 5 years ago
- ☆22Updated 2 years ago
- cve-2014-0130 rails directory traversal vuln☆18Updated 7 years ago
- Quickly add http and https domains to BurpSuite's scope with all paths.☆16Updated 8 years ago
- Study about HQL injection exploitation.☆49Updated 8 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- ☆31Updated 5 years ago
- Alpha version code of Recon UI☆14Updated 6 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆24Updated 5 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago