PortSwigger / attack-surface-detectorLinks
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
☆14Updated 3 years ago
Alternatives and similar repositories for attack-surface-detector
Users that are interested in attack-surface-detector are comparing it to the libraries listed below
Sorting:
- Scripts that we use for pentesting☆42Updated 8 years ago
- ☆29Updated 8 years ago
- Burp Extension for AWS Signing☆89Updated 7 months ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆46Updated 8 years ago
- Alphanumeric Encoder☆25Updated 6 years ago
- An AWS Lambda vulnerable application written in flask.☆49Updated 7 years ago
- Docker Version of Aquatone☆14Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- LetMeOutOfYour.net Resources☆20Updated 5 years ago
- OAuth Security Cheatsheet☆40Updated 11 years ago
- WStalker: an easy proxy☆25Updated 5 years ago
- A tool for auditing medical devices and healthcare infrastructure☆21Updated 2 years ago
- An enumeration and exploitation toolkit using RFC calls to SAP☆39Updated 5 years ago
- Capture all RabbitMQ messages being sent through a broker.☆32Updated 4 years ago
- ☆36Updated 5 years ago
- Zone transfers for rwhois☆20Updated 6 years ago
- Simple S3 Bucket Testing Software☆31Updated 3 years ago
- Manticore Adversary Emulation Cli☆48Updated 5 years ago
- This extension provide a Python panel for writing custom proxy script.☆16Updated 5 years ago
- Pivot into private VPC networks using a VPN connection☆43Updated 5 years ago
- Forked and updated with some additional features over the original☆17Updated 4 years ago
- A simple remote scanner for Liferay Portal☆18Updated 4 months ago
- A tool to evaluate Content Security Policies.☆72Updated 5 years ago
- List (or plunder) private repos/gists to which a token has access, including those of other users☆11Updated 3 years ago
- AWS S3 Bucket/Object Finder☆25Updated 7 years ago
- During pentesting I often miss screenshots of events for reports due to the quick pace of testing and a lack of foreknowledge about what …☆26Updated 6 years ago
- An Evil OIDC Server☆53Updated 2 years ago
- Report and finding templates used by the Serpico reporting tool☆16Updated 6 years ago
- ☆36Updated 5 years ago
- My python3 implementation of a Forward Shell☆36Updated 6 years ago