Invicti-Security / brainstormLinks
A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery
☆378Updated last year
Alternatives and similar repositories for brainstorm
Users that are interested in brainstorm are comparing it to the libraries listed below
Sorting:
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆398Updated 3 weeks ago
- ☆181Updated last year
- unleashed ffuf☆233Updated 2 months ago
- jxscout superpowers JavaScript analysis for security researchers☆327Updated 3 months ago
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆711Updated last month
- A lightweight GPT model, trained to discover subdomains.☆338Updated 3 weeks ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆152Updated 9 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆286Updated last year
- ☆220Updated last year
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆223Updated 5 months ago
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆243Updated 6 months ago
- Bambdas collection for Burp Suite Professional and Community.☆474Updated last week
- A rapid HTTP downgrade smuggling scanner written in Go.☆310Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆151Updated last year
- AI-powered ffuf wrapper☆633Updated last month
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆288Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆157Updated last year
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆744Updated 2 years ago
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆159Updated 2 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆241Updated last week
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆163Updated last year
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆353Updated 2 years ago
- ☆516Updated last year
- Abuse trust-boundaries to bypass firewalls and network controls☆385Updated 5 months ago
- The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbit…☆700Updated 2 weeks ago
- ☆174Updated 5 months ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆208Updated 7 months ago
- A streamlined tool for discovering private TLDs for security research.☆233Updated this week
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆421Updated this week
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆105Updated 5 months ago