A black-box scanner for HTTP request smuggling vulnerabilities caused by chunk parsing discrepancies.
☆31Oct 29, 2025Updated 4 months ago
Alternatives and similar repositories for smugchunks
Users that are interested in smugchunks are comparing it to the libraries listed below
Sorting:
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Dec 10, 2022Updated 3 years ago
- ☆48Aug 2, 2025Updated 7 months ago
- The Jolly Executioner - a simple command execution proxy☆16Jun 9, 2024Updated last year
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- Use requests to send HTTP raw sockets (To Test RFC Compliance)☆24Jun 22, 2024Updated last year
- A browser bookmark to show hidden fields and enable disabled fields on a web page☆20Oct 29, 2023Updated 2 years ago
- PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registra…☆38Dec 28, 2025Updated 2 months ago
- A simple Google Protobuf Decoder for Burp☆43Nov 22, 2022Updated 3 years ago
- Malifar is a GPU-accelerated NSEC3 DNS zone dumper☆14Jun 4, 2024Updated last year
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- A repo for output of an intrusion prediction project☆11Feb 15, 2026Updated 2 weeks ago
- dirb is a system for creating, managing and searching complex directory structures☆10Dec 12, 2015Updated 10 years ago
- Python client for IP to ASN lookup services☆12Feb 21, 2026Updated last week
- Simple fork from degoogle original project with bug hunting purposes☆91Jun 15, 2022Updated 3 years ago
- ☆10Sep 26, 2019Updated 6 years ago
- Advanced PoC & Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Drive…☆26Feb 4, 2026Updated last month
- HTTP testing platform for security researchers☆20Jan 14, 2026Updated last month
- Daily scrapes of trends from Wikipedia, Google and Twitter☆11May 15, 2023Updated 2 years ago
- ☆10Aug 17, 2021Updated 4 years ago
- Scanner for misconfigured DevSecOps or Security tools on internet like SonarQube, GoPhish etc.☆12Apr 4, 2025Updated 10 months ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆31Jan 13, 2026Updated last month
- bypass 401/403☆13Sep 13, 2022Updated 3 years ago
- Weaponize.it is your go-to resource for gaining insights into pentesting, bug bounty hunting, and scripting.☆12Apr 3, 2025Updated 11 months ago
- ☆20Sep 6, 2025Updated 5 months ago
- ☆12Mar 14, 2022Updated 3 years ago
- Another Vulnerability Auditor - Community Edition☆13Jun 1, 2021Updated 4 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- A simple server to act as a Veeam "honeypot" providing alerting for network scans for Veeam services☆16Aug 31, 2025Updated 6 months ago
- EDU token contract that powers the OS.University Network☆11May 26, 2018Updated 7 years ago
- Here comes the paintrain!☆11Aug 8, 2016Updated 9 years ago
- 2023HW漏洞整理,收集整理漏洞EXp/POC,大部分漏洞来源网络,目前收集整理了200多个poc/exp☆14Sep 14, 2024Updated last year
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- Detect public repository dependencies in the GitHub repositories with an orphan required library.☆22Jun 24, 2025Updated 8 months ago
- old website files☆10Jun 30, 2016Updated 9 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆116Aug 30, 2022Updated 3 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Nov 29, 2020Updated 5 years ago
- Python-based JA3 Generation Server☆13Mar 29, 2020Updated 5 years ago
- Dockerfile for creating a minimal Freeswitch image for use with drachtio-mrf☆10May 13, 2024Updated last year
- Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others☆13Feb 19, 2025Updated last year