一款被动扫描ssrf的burpsuite插件
☆21Dec 30, 2022Updated 3 years ago
Alternatives and similar repositories for SSRF-SCAN
Users that are interested in SSRF-SCAN are comparing it to the libraries listed below
Sorting:
- 使用 Java 实现的将 Burp 流量异步转发到 Xray 的 Burp 插件,内含多种功能☆16Jun 11, 2023Updated 2 years ago
- 检测host头攻击的Burpsuite被动扫描插件,Burpsuite passive scanning plugin responsible for detecting host header attack☆11Apr 28, 2023Updated 2 years ago
- ☆45Jun 28, 2025Updated 8 months ago
- js文件敏感信息内容提取☆28Aug 22, 2023Updated 2 years ago
- 批量处理url链接,获取多级路径并打印☆47Jul 12, 2023Updated 2 years ago
- BurpSuite Rpc 算法转发插件☆17Jan 4, 2023Updated 3 years ago
- 一个BurpSuite插件,想法是简化日常挖洞流程☆14Jun 28, 2022Updated 3 years ago
- 一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。☆16Dec 26, 2018Updated 7 years ago
- JSON CSRF PoC☆14Aug 1, 2020Updated 5 years ago
- burpsuite插件captcha-killer的ddddocr的web接口☆15Nov 22, 2021Updated 4 years ago
- 使用了lsp魔改全局版+fundex2实现云脱壳原理 测试环境☆19Feb 11, 2024Updated 2 years ago
- zscan的poc扫描模块,独立出来是为了方便以后升级xray poc格式的v2版本☆15Jan 12, 2022Updated 4 years ago
- All about subdomain enumeration☆16Feb 5, 2019Updated 7 years ago
- BurpHttpHelper是一款Burpsuite插件,主要用于简化和解决Burpsuite对Http的一些操作.☆107Jan 22, 2023Updated 3 years ago
- ☆15Dec 15, 2020Updated 5 years ago
- 一个js文件敏感信息搜集脚本,支持输入url和js文件,也支持批量敏感信息匹配。☆77Feb 14, 2023Updated 3 years ago
- ARL与AWVS联动,实现自动化扫描并推送结果☆20Jul 11, 2024Updated last year
- auto decrypt the request ciphertext and auto bypass the signature of the API. 针对数据包加密、签名保护的安全测试场景,借助burp插件自动解密数据包密文,自动绕过接口的签名保护,最后借助密文数据…☆53Mar 27, 2024Updated last year
- ☆22Jan 11, 2025Updated last year
- Fast Golang Tool To Get Cname For Domains and Subdomain☆16Feb 7, 2025Updated last year
- An HTTP request smuggling scanner designed to work at scale☆25Oct 2, 2022Updated 3 years ago
- GXX是一款强大的指纹识别工具,基于YAML配置的规则进行目标系统识别。 本工具支持多种协议(HTTP/HTTPS、TCP、UDP),可进行高效的批量目标扫描和精准识别。☆30Feb 22, 2026Updated last week
- Hello, Attack Surface Scan, BurpSuite完全被动扫描插件,不主动发送任何请求,适合挂机使用。☆24Jul 10, 2022Updated 3 years ago
- Test bench lab for Shellcode Obfuscation☆35Sep 2, 2025Updated 6 months ago
- A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting☆91Feb 17, 2021Updated 5 years ago
- SpringBoot_Actuator_RCE☆95May 26, 2020Updated 5 years ago
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆29Feb 9, 2022Updated 4 years ago
- HTTP报文加密的具体实现,用于测试 https://github.com/outlaws-bai/Galaxy☆33Dec 29, 2025Updated 2 months ago
- ARL 灯塔的 WIH 利用☆32Jul 2, 2024Updated last year
- FuckAnywhere - 这是一个BurpSuite Jython(Python)插件,用于在HTTP请求中随处插入你想要进行测试的代码。☆51Jan 25, 2022Updated 4 years ago
- Backdoor&后渗透工具☆21Aug 10, 2021Updated 4 years ago
- Burpsuite存储桶配置不当漏洞检测插件☆195Jul 16, 2025Updated 7 months ago
- Clickjacking Proof-of-Concept Exploit☆25Oct 1, 2020Updated 5 years ago
- ☆26Jun 19, 2022Updated 3 years ago
- 对Auth/Waf 自动化bypass的burpsuite插件☆1,089Updated this week
- Results from analyzing data gathered from 1.6 billion subdomains☆32Oct 15, 2024Updated last year
- 基于BurpCollector的二次开发, 记录Burpsuite Site Map记录的里的数据包中的目录路径参数名信息,并存入Sqlite,并可导出txt文件。☆24May 8, 2019Updated 6 years ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- 利用字符集编码绕过waf的burpsuite插件☆124Mar 22, 2021Updated 4 years ago