PentesterLab / cr

Related projects ⓘ

Alternatives and complementary repositories for cr

• dreadlocked / SSRFmap
  Simple Server Side Request Forgery services enumeration tool.
  ☆54Updated 6 years ago
• sailay1996 / offsec_WE
  learning case to prepare OSWE
  ☆38Updated 5 years ago
• Leoid / AWSBurpCollaborator
  Deploy a Private Burpsuite Collaborator using boto3 Python Library
  ☆57Updated 4 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 10 months ago
• federicodotta / BurpJDSer-ng-edited
  Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…
  ☆20Updated 9 months ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• hoainam1989 / training-application-security
  This repository for training application security.
  ☆26Updated 5 years ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆43Updated 7 years ago
• appsecco / practical-recon-levelup0x02
  This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…
  ☆60Updated 5 years ago
• ticarpi / my-pentesting-repo
  This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…
  ☆52Updated 4 years ago
• appsecco / VyAPI
  VyAPI - A cloud based vulnerable hybrid Android App
  ☆84Updated 4 years ago
• ettic-team / EndpointFinder-Burp
  ☆31Updated 5 years ago
• Team-Firebugs / Burp-LFI-tests
  Fuzzing for LFI using Burpsuite
  ☆59Updated 8 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 5 years ago
• zi0Black / POC-CVE-2018-0114
  This repository contains the POC of an exploit for node-jose < 0.11.0
  ☆25Updated last year
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆30Updated 5 months ago
• hvqzao / java-deserialize-webapp
  Vulnerable webapp testbed
  ☆20Updated 8 years ago
• lc / cspparse
  A tool to evaluate Content Security Policies.
  ☆71Updated 4 years ago
• SmeegeSec / Burp-Importer
  Burp Suite Importer - Connect to multiple web servers while populating the sitemap.
  ☆48Updated 4 years ago
• fadyosman / SAMLExtractor
  A tool that can take a URL or list of URL and prints back SAML consume URL.
  ☆35Updated 5 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆36Updated last year
• TarlogicSecurity / Arecibo
  Endpoint for Out-of-Band Exfiltration (DNS & HTTP)
  ☆90Updated 6 years ago
• bayotop / sink-logger
  Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.
  ☆50Updated 2 years ago
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆36Updated 11 years ago
• rudSarkar / crlf-injector
  A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…
  ☆46Updated 2 years ago
• maK- / scanomaly-2years
  This is a web application fuzzer scanner - the goal was CLI flexibility and rapid prototyping
  ☆46Updated 4 years ago
• irsdl / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆41Updated 6 years ago