Invicti-Security / brainstormLinks
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
☆314Updated 7 months ago
Alternatives and similar repositories for brainstorm
Users that are interested in brainstorm are comparing it to the libraries listed below
Sorting:
- ☆177Updated 8 months ago
- unleashed ffuf☆211Updated 3 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆299Updated last year
- CT Log Scanner☆376Updated 2 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆160Updated 6 months ago
- ☆172Updated 4 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆141Updated 11 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆661Updated 2 months ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆274Updated last year
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆358Updated last month
- AI-powered ffuf wrapper☆496Updated 7 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆141Updated 6 months ago
- Bambdas collection for Burp Suite Professional and Community.☆339Updated last week
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆342Updated last year
- A streamlined tool for discovering private TLDs for security research.☆211Updated last week
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆146Updated last week
- jxscout superpowers JavaScript analysis for security researchers☆163Updated 3 weeks ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆224Updated last week
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆124Updated 2 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆169Updated 8 months ago
- ☆490Updated last year
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning—On Your Terms. Easily distribute arbit…☆523Updated 2 weeks ago
- ☆171Updated 3 weeks ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆642Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆387Updated this week
- PP-finder Help you find gadget for prototype pollution exploitation☆164Updated 10 months ago
- A fast, minimalistic scanner for time-based SQL injection (SQLi) detection – built in Go.☆126Updated last month
- ☆194Updated 11 months ago
- Abuse trust-boundaries to bypass firewalls and network controls☆284Updated 2 weeks ago