PortSwigger / asset-discovery

Related projects ⓘ

Alternatives and complementary repositories for asset-discovery

• codewatchorg / Burp-IndicatorsOfVulnerability
  Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack
  ☆41Updated last year
• redhuntlabs / BurpSuite-Asset_History
  ☆33Updated 4 years ago
• ankitk323 / ImgRce
  Image Tragick Exploit Tool Using Burp Collaborator
  ☆35Updated 5 months ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆45Updated 3 years ago
• GuayoyoCyber / CVE-2021-21975
  Nmap script to check vulnerability CVE-2021-21975
  ☆28Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆41Updated last year
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆27Updated last year
• PortSwigger / sqlmap-dns-collaborator
  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap
  ☆36Updated 3 years ago
• osamahamad / CVE-2020-9484-Mass-Scan
  CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE
  ☆32Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆55Updated 5 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• S1lkys / CVE-2020-15906
  Writeup of CVE-2020-15906
  ☆44Updated 4 years ago
• nuncan / slurp
  The original slurp source
  ☆32Updated 5 years ago
• RandomRobbieBF / phpunit-brute
  Tool to try multiple paths for PHPunit RCE CVE-2017-9841
  ☆26Updated 3 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• jaeles-project / jaeles-plugins
  Default plugins for Jaeles Scanner
  ☆33Updated 4 years ago
• RedSection / jspanda
  client-side prototype pullution vulnerability scanner
  ☆46Updated 3 years ago
• ivision-research / burp-highlighter
  ☆22Updated 2 years ago
• ascr0b / PCWT
  ☆47Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆73Updated 4 years ago
• PortSwigger / ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆9Updated 3 years ago
• luke-goddard / LFI-Fuzzer-Burp-Suite
  Local File Inclusion Burp-Suite Intruder Payload Generator Plugin
  ☆39Updated 4 years ago
• MarioBartolome / Jenkins-pRCE-exploit
  Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…
  ☆10Updated 5 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆23Updated last year
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆39Updated 3 years ago
• hahwul / ras-fuzzer
  RAS(RAndom Subdomain) Fuzzer
  ☆43Updated 4 years ago
• vp777 / metahttp
  A bash script that automates the scanning of a target network for HTTP resources through XXE
  ☆37Updated 3 years ago