PortSwigger / autorizeLinks
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
☆260Updated 10 months ago
Alternatives and similar repositories for autorize
Users that are interested in autorize are comparing it to the libraries listed below
Sorting:
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆780Updated last month
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆382Updated last week
- ActiveScan++ Burp Suite Plugin☆232Updated last month
- ☆411Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆596Updated 4 years ago
- Because just a dark theme wasn't enough!☆574Updated 9 months ago
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆720Updated this week
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆650Updated last year
- Burp Extension for a passive scanning JS files for endpoint links.☆792Updated last year
- HTTP Request Smuggling Detection Tool☆524Updated last year
- Burp Extension for a passive scanning JS files for endpoint links.☆175Updated 6 years ago
- ☆218Updated last week
- Nuclei plugin for BurpSuite☆1,290Updated last year
- Burp Suite Logger++: Log activities of all the tools in Burp Suite☆180Updated last year
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆402Updated 2 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆269Updated 5 years ago
- A cheatsheet for exploiting server-side SVG processors.☆770Updated 5 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆275Updated 8 months ago
- Grafana Unauthorized arbitrary file reading vulnerability☆365Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆640Updated last year
- Web dashboard for Interactsh client☆231Updated 4 months ago
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆401Updated 5 years ago
- essential templates for kenzer [DEPRECATED]☆116Updated 2 years ago
- ☆100Updated last week
- HTTP file upload scanner for Burp Proxy☆413Updated 2 years ago
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆223Updated last year
- HackerOne "in scope" domains☆477Updated this week
- Burpsuite plugin for Interact.sh☆227Updated last year
- Burp Extensions Api☆181Updated last month