Additional active scan checks for BURP
☆28Oct 3, 2024Updated last year
Alternatives and similar repositories for outpost24-cors-check
Users that are interested in outpost24-cors-check are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This repository contains a number of insecure self-hosted applications that allows interested security engineers to test vulnerabilities …☆26Apr 30, 2025Updated last year
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆44Dec 16, 2024Updated last year
- Find what egress ports are allowed☆47Nov 19, 2025Updated 6 months ago
- ☆92Apr 29, 2024Updated 2 years ago
- Ansible role for Burp Suite☆11Mar 4, 2026Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Proof of Concepts for unsafe deserialization in Ruby☆17Oct 17, 2024Updated last year
- ThingFinder is a tool designed to facilitate searching and analysing code, whether it's source code or compiled binary executables. It pr…☆40Jun 16, 2024Updated 2 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- ☆40Aug 2, 2024Updated last year
- ☆27May 21, 2025Updated last year
- .NET deserialization hunter☆90Jul 21, 2024Updated last year
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆19Jun 9, 2023Updated 3 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Jan 18, 2022Updated 4 years ago
- Dotfiles for development on MacOS and Manjaro☆10Jun 6, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆113Jun 23, 2025Updated 11 months ago
- ☆66May 21, 2024Updated 2 years ago
- ☆18Feb 2, 2026Updated 4 months ago
- Burp Suite extension for testing Passkey systems.☆76Apr 1, 2025Updated last year
- bugbounty tools☆17Oct 26, 2023Updated 2 years ago
- DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…☆39Aug 8, 2025Updated 10 months ago
- gRPC / gRPC-Web Pentest Practicing Lab☆10Aug 29, 2023Updated 2 years ago
- Home of code related to security of network systems.☆25Jan 22, 2025Updated last year
- CVE-2023-26818 Exploit MacOS TCC Bypass W/ Telegram☆18Jun 6, 2024Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Easily create and share Proof of Concepts in HTML, JavaScript, etc. with custom headers, all via query parameters☆15Jun 1, 2026Updated 2 weeks ago
- Test domain expiration dates.☆12Dec 2, 2022Updated 3 years ago
- CRLF Detection based on @BlackFan 's work See link below☆17Mar 14, 2024Updated 2 years ago
- Regex out URI parameters from backend code, craft URIs to check for reflections or send to local burp proxy☆13Dec 8, 2022Updated 3 years ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆161Mar 31, 2025Updated last year
- Custom Trickest Workflows☆12Oct 26, 2023Updated 2 years ago
- Dump all available paths and/or endpoints on WADL file.☆98Nov 24, 2025Updated 6 months ago
- GoLang Scripting Expert, a repo for template scripts regarding basic golang functions, many with a security focus☆22Jun 22, 2020Updated 5 years ago
- Very loud vBulletin exploit☆14Aug 12, 2020Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- The main goal of this repo is to learn about the gRPC communication patterns and hunt for vulnerabilities in the gRPC-Web app to improve …☆10Jul 10, 2024Updated last year
- CSS injection requires an attacker to load a standalone CSS file to leak HTML tag attributes.☆21Apr 19, 2024Updated 2 years ago
- ☆32Dec 28, 2023Updated 2 years ago
- A Burp Suite extension for analyzing Next.js Server Actions - server-side functions identified by hash IDs and `Next-Action` headers.☆54Aug 8, 2025Updated 10 months ago
- Exposor is a tool using internet search engines to detect exposed technologies with a unified syntax.☆68Nov 12, 2025Updated 7 months ago
- A simple Meterpreter stager written in Rust.☆45Nov 2, 2025Updated 7 months ago
- A Chrome Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆16Jul 17, 2024Updated last year