PortSwigger / attack-surface-detector
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
☆13Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for attack-surface-detector
- ☆25Updated 3 years ago
- Alphanumeric Encoder☆25Updated 6 years ago
- Forked and updated with some additional features over the original☆16Updated 3 years ago
- ☆28Updated 7 years ago
- Zone transfers for rwhois☆20Updated 5 years ago
- ☆34Updated 4 years ago
- LetMeOutOfYour.net Resources☆20Updated 4 years ago
- This repo will contain slides and information from the Attacking Active Directory Hacking Series talks presented at SecKC.☆32Updated 4 months ago
- Uninvited Guest - A file server for files over DNS TXT records☆22Updated last month
- An enumeration and exploitation toolkit using RFC calls to SAP☆36Updated 4 years ago
- The SSH Multiplex Backdoor Tool☆62Updated 5 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 2 years ago
- DNS server limitation mapper☆25Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Exfiltration based on custom X509 certificates☆26Updated 8 months ago
- Burp Suite extension to help make Graphql request more readable☆30Updated 6 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 3 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- ☆35Updated 4 years ago
- Any presentation we've given at FortyNorth Security☆33Updated 3 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- ☆20Updated 5 years ago
- Extensive code infrastructure for finding unintended information leaks in files, git repositories and much more.☆28Updated 2 years ago
- A browser based visualization of domain trusts. Give it a csv, get a pretty diagram to play with!☆18Updated 5 years ago