XSS漏洞与SSRF漏洞的联合攻击及其综合防范机制实验平台
☆16Feb 14, 2025Updated last year
Alternatives and similar repositories for XSS_SSRF_Attack_Prevention
Users that are interested in XSS_SSRF_Attack_Prevention are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 🔒 越权测试助手 (Privilege Escalation Testing Assistant)☆16Mar 28, 2025Updated 11 months ago
- Spring Boot whitelabel error page SpEL rce EXP☆13May 24, 2024Updated last year
- 基于协程并发的Web敏感文件扫描器,精准探测备份文件、配置泄露及版本控制目录暴露风险,为渗透测试与安全防护提供专业级资产测绘方案。☆12Mar 6, 2025Updated last year
- Enhanced BurpGPT 是一个强大的 Burp Suite 插件。通过分析指定的 HTTP 请求和响应,帮助安全测试人员更快速地发现潜在的安全漏洞。☆130Oct 21, 2025Updated 5 months ago
- 自动化快速评估工具☆30Dec 30, 2025Updated 2 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- 个人漏洞收集项目,包括复现环境、POC、EXP等☆30Mar 14, 2025Updated last year
- 用于提取Webpack打包的未加载的JavaScript文件,并扫描这些文件以查找敏感信息。☆39Sep 17, 2025Updated 6 months ago
- HTTP报文加密的具体实现,用于测试 https://github.com/outlaws-bai/Galaxy☆33Dec 29, 2025Updated 2 months ago
- FLUX 是一款专业的Web安全扫描工具,JS敏感信息收集、API端点提取、API文档解析、页面爬取、子域名发现、漏洞测试、WAF检测与绕过、JS代码分析等功能。☆93Updated this week
- 一个简单便捷的代理小工具☆35Mar 8, 2025Updated last year
- 此文件用于配套“卫界安全-阿呆攻防”中所涉及的代码类文档☆11Apr 26, 2025Updated 11 months ago
- 「渊照」是一款功能强大的专业暗链扫描工具,专注于检测网站、HTML文件或目录中的隐蔽链接、隐藏元素和恶意代码。该工具能够智能识别扫描目标类型(本地文件/目录、内网URL、公网URL),并自动调整扫描策略以获得最佳效果,是安全人员进行网站安全审计和应急响应的理想工具。☆92Nov 29, 2025Updated 3 months ago
- XSS-Detector是一款基于多线程并发架构的Burp Suite扩展插件,通过精确请求-响应映射机制高效检测Web应用中的XSS漏洞。☆24Apr 27, 2025Updated 11 months ago
- 为渗透测试人员和开发者设计的纯前端工具集,专注于信息收集和文本处理,纯前端实现的 Web 工具集,提供 URL 处理、路径分析、信息收集等功能。☆16Jun 27, 2025Updated 9 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- 一款图形化的 .DS_Store文件泄露、.git目录泄露、.svn目录泄露漏洞利用工具。☆96Mar 26, 2025Updated last year
- 主动获取js中敏感信息☆71Mar 18, 2025Updated last year
- arl灯塔自动化扫描工具☆54Feb 24, 2025Updated last year
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆29Feb 9, 2022Updated 4 years ago
- 金蝶星空云反序列化漏洞内存马☆52Mar 27, 2024Updated 2 years ago
- 这是一个全面的Web应用安全扫描工具,专注于检测XSS(跨站脚本)漏洞,同时也能够发现其他类型的Web安全漏洞。该工具支持多种扫描模式、不同级别的有效载荷和详细的漏洞报告。☆64Mar 13, 2025Updated last year
- ☆26Apr 25, 2025Updated 11 months ago
- 一款全方位扫描工具,具备高效的机器探活,端口探活,协议识别,指纹识别,漏洞扫描等功能☆395Sep 13, 2025Updated 6 months ago
- jolokia Realm JNDI RCE 漏洞检测,�并获取明文密码☆18May 29, 2023Updated 2 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- weblogic批量打入内存马,electron+vue3+springboot实现。☆54Mar 13, 2024Updated 2 years ago
- 修复增强版IP反查域名,查询备案信息、查询百度权重☆159Jan 25, 2025Updated last year
- The burp extension to forward the request☆10Oct 21, 2024Updated last year
- Yet Another Extension for Proxy and Yakit☆29Apr 14, 2025Updated 11 months ago
- 云函数扫描器☆60Dec 6, 2023Updated 2 years ago
- hashcat_gui项目 ,轻松使用密码破解 ,自动识别密码对应格式☆59Apr 28, 2025Updated 10 months ago
- SQLRecorder是一个能够实时记录SQL语句的工具,方便代码审计时对SQL注入的实时关注。(A proxy to record all passing SQL statements.)☆35Apr 5, 2025Updated 11 months ago
- ☆32May 9, 2025Updated 10 months ago
- DTGO (灯塔狩猎者) 是一个用于批量管理和监控资产灯塔系统任务的图形化工具。它能够自动发现灯塔系统、批量提交任务、监控任务状态,并支持导出任务结果。☆37Feb 10, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- 一款扫描js中敏感api的burp插件☆38Aug 30, 2023Updated 2 years ago
- 某 FE 平台一键漏洞探测工具,支持单 url 以及批量探测☆33Nov 11, 2024Updated last year
- Automated mRemoteNG Decrypt Tool☆27Apr 14, 2024Updated last year
- 对Fscan扫描结果进行整理☆18Mar 26, 2024Updated 2 years ago
- CVE-2021-22205 RCE☆13Jul 4, 2022Updated 3 years ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- xss漏洞挖掘插件☆37Feb 6, 2025Updated last year