PortSwigger / active-scan-plus-plus
ActiveScan++ Burp Suite Plugin
☆206Updated 9 months ago
Related projects: ⓘ
- List DTDs and generate XXE payloads using those local DTDs.☆601Updated 6 months ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆210Updated this week
- ☆395Updated 2 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆772Updated 2 years ago
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆701Updated 3 years ago
- Nuclei templates written by us.☆264Updated 3 years ago
- ☆277Updated 2 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆252Updated last year
- ☆354Updated this week
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆502Updated 7 months ago
- ☆159Updated last month
- Burp Suite Logger++: Log activities of all the tools in Burp Suite☆161Updated 3 months ago
- Build your own reconnaissance system with Osmedeus Next Generation☆177Updated 3 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆159Updated 5 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆548Updated 3 years ago
- DNS rebinding toolkit☆250Updated last year
- Exfiltrate blind remote code execution output over DNS via Burp Collaborator.☆247Updated 2 years ago
- ☆282Updated 2 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆581Updated 3 years ago
- essential templates for kenzer [DEPRECATED]☆106Updated last year
- BurpSuite Extension: A one-stop pen testing checklist and logger tool☆258Updated last year
- automated web assets enumeration & scanning [DEPRECATED]☆285Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆275Updated 3 years ago
- Combined port scanning w/ Masscan's speed & Nmap's scanning features.☆148Updated 2 years ago
- ☆173Updated this week
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆212Updated 3 weeks ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆351Updated 2 years ago
- Hidden parameters discovery suite☆220Updated last year