A black-box scanner for HTTP request smuggling vulnerabilities caused by chunk parsing discrepancies.
☆32Oct 29, 2025Updated 6 months ago
Alternatives and similar repositories for smugchunks
Users that are interested in smugchunks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Use requests to send HTTP raw sockets (To Test RFC Compliance)☆24Jun 22, 2024Updated last year
- The Jolly Executioner - a simple command execution proxy☆16Jun 9, 2024Updated last year
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Dec 10, 2022Updated 3 years ago
- SendToXray - Burp Suite Extender, Send HTTP request to XRAY proxy.☆11May 22, 2021Updated 4 years ago
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆13Jul 25, 2023Updated 2 years ago
- ☆10May 25, 2023Updated 2 years ago
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registra…☆37Apr 24, 2026Updated last week
- WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…☆14Oct 8, 2018Updated 7 years ago
- CorsOne - CORS Misconfiguration Discovery Tool☆27Apr 27, 2026Updated last week
- micro-gpt in ASM on the Super Nintendo☆57Feb 12, 2026Updated 2 months ago
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- ☆24Sep 6, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Notion C2 Profile for Mythic☆45Updated this week
- Automated GitHub secret scanning with smart alerting & monitoring.☆31Jan 15, 2026Updated 3 months ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆126Sep 12, 2025Updated 7 months ago
- Binary Ninja Plugins to work with Unpac.Me unpacking service☆12Apr 24, 2025Updated last year
- RedSage: A Cybersecurity Generalist LLM (ICLR'26)☆42Apr 24, 2026Updated last week
- A browser bookmark to show hidden fields and enable disabled fields on a web page☆20Oct 29, 2023Updated 2 years ago
- ☆18Apr 9, 2024Updated 2 years ago
- Fast AEM scope gathering tool for all your public and private BugCrowd Programs☆10Jul 14, 2021Updated 4 years ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 3 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- OWASP Foundation Web Respository��☆12Apr 21, 2026Updated last week
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆93Apr 9, 2026Updated 3 weeks ago
- Utility to pull disclosed vulnerabilities from HackerOne private programs - for personal use only☆13Aug 22, 2021Updated 4 years ago
- Repository focused on advanced Red Team tools and techniques, mainly created with C. It contains projects I have created to understand ma…☆21Mar 23, 2026Updated last month
- Demo of using WASM to sandbox Plotly execution☆20Mar 30, 2025Updated last year
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆116Aug 30, 2022Updated 3 years ago
- ☆12Mar 14, 2022Updated 4 years ago
- 开源!自主设计的badusb电路板☆10Mar 26, 2021Updated 5 years ago
- Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Drive…☆37Feb 4, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Awesome MalDev Links☆58Updated this week
- Modified version of PEAS client for offensive operations☆50Nov 1, 2025Updated 6 months ago
- Automatically look for paramater reflections in the HTTP response☆17Apr 30, 2025Updated last year
- A simple server to act as a Veeam "honeypot" providing alerting for network scans for Veeam services☆16Aug 31, 2025Updated 8 months ago
- Find sources and sinks in js code that could lead to DOM XSS 🔎💧🚰☆23Feb 27, 2024Updated 2 years ago
- PlasmaPup is designed to help central and departmental IT personnel understand their exposures in Active Directory by showing which accou…☆29Apr 10, 2024Updated 2 years ago
- Remote code execution in Power Platform connectors via JSON deserialization☆23Mar 30, 2023Updated 3 years ago