PortSwigger / auth-matrix
AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
☆40Updated last year
Alternatives and similar repositories for auth-matrix:
Users that are interested in auth-matrix are comparing it to the libraries listed below
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 4 years ago
- ☆94Updated 3 years ago
- ☆71Updated last year
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆151Updated 4 years ago
- ☆147Updated 3 years ago
- ☆76Updated 10 months ago
- Simple "postMessage logger" Chrome extension☆96Updated 4 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 6 months ago
- This repo contains all the injections mentioned in my talk and enumerators.☆123Updated last year
- ☆160Updated 3 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆107Updated 3 years ago
- Burp Bounty profiles☆82Updated 3 years ago
- Searching for virtual hosts among non-resolvable domains☆87Updated 4 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆133Updated 3 years ago
- Authenticated SSRF in Grafana☆79Updated 9 months ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Updated 3 years ago
- ☆94Updated last month
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆256Updated 2 years ago
- Piper Burp Suite Extender plugin☆117Updated last year
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- ☆70Updated 3 years ago
- NotSoCereal: A Deserialization exploit playground☆51Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks