NetSPI / Burp-Extensions

Related projects: ⓘ

• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆160Updated last year
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆71Updated 6 years ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆136Updated 3 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆168Updated last year
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆287Updated last year
• WebBreacher / tilde_enum
  Takes a URL and checks the system for the tilde enum vuln and then find the files.
  ☆168Updated 5 years ago
• dobin / BurpSentinel
  GUI Burp Plugin to ease discovering of security holes in web applications
  ☆148Updated 7 years ago
• JGillam / burp-co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆150Updated 6 months ago
• NetSPI / Wsdler
  WSDL Parser extension for Burp
  ☆206Updated 6 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• metalnas / loubia
  Python script to exploit java unserialize on t3 (Weblogic)
  ☆61Updated 7 years ago
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆223Updated 4 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆172Updated 5 years ago
• AonCyberLabs / xxe-recursive-download
  ☆227Updated 8 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆171Updated 4 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆126Updated 11 years ago
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 8 years ago
• anexia-it / winshock-test
  Bash script that tests if a system is Winshock (MS14-066) vulnerable
  ☆99Updated 9 years ago
• siberas / sjet
  siberas JMX exploitation toolkit
  ☆127Updated last year
• c0mmand3rOpSec / CVE-2017-10271
  WebLogic Exploit
  ☆141Updated 6 years ago
• sethsec / PyCodeInjection
  Automated Python Code Injection Tool
  ☆85Updated 2 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆234Updated 5 years ago
• kkirsche / CVE-2017-10271
  Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)
  ☆125Updated 2 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆104Updated 5 years ago
• yandex / burp-molly-pack
  Security checks pack for Burp Suite
  ☆137Updated 6 years ago
• fuzzdb-project / webshell
  ☆30Updated this week
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆121Updated 7 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆172Updated 8 years ago