PentesterLab / cr
☆19Updated 7 years ago
Alternatives and similar repositories for cr:
Users that are interested in cr are comparing it to the libraries listed below
- learning case to prepare OSWE☆37Updated 5 years ago
- Vulnerable webapp testbed☆21Updated 8 years ago
- ☆18Updated 7 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆57Updated 5 years ago
- Lab that will help you to understand how type juggling vulnerability works.☆22Updated 4 years ago
- ☆32Updated 5 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- A tool to evaluate Content Security Policies.☆71Updated 4 years ago
- Fuzzing for LFI using Burpsuite☆62Updated 8 years ago
- A tool that can take a URL or list of URL and prints back SAML consume URL.☆36Updated 6 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Scripts and tools for AWS Pentest☆53Updated 4 years ago
- Add headers to all Burp requests to bypass some WAF products☆40Updated last year
- A CLI tool to interact with hackerone.com. This was my submission for HackerOne's Summer 2018 Hack Day.☆38Updated 6 years ago
- XXE Injection Payloads☆28Updated 5 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆66Updated last year
- AWS Security Checks☆39Updated 7 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- Compilation of JavaScript XSS oneliners payloads that rocks your nuts!☆25Updated 7 years ago
- A simple tool to decloak/expose the bucket name behind a domain.☆22Updated 5 years ago
- The Outlook HTML Leak Test Project☆41Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- ☆42Updated 5 years ago
- The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters☆102Updated last year
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 6 years ago