PortSwigger / bambdasLinks
Bambdas collection for Burp Suite Professional and Community.
☆414Updated last week
Alternatives and similar repositories for bambdas
Users that are interested in bambdas are comparing it to the libraries listed below
Sorting:
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆285Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆281Updated last year
- ☆514Updated 2 weeks ago
- ☆183Updated last year
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆158Updated last week
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆549Updated 7 months ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆369Updated 2 years ago
- CT Log Scanner☆408Updated 6 months ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆683Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 10 months ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆274Updated last month
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆227Updated last year
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆702Updated last month
- ☆249Updated 4 years ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆152Updated last year
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆325Updated 11 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆76Updated last year
- ☆404Updated last month
- A lightweight GPT model, trained to discover subdomains.☆305Updated last month
- A subdomain fuzzing tool☆168Updated last year
- CSPBypass.com, a tool designed to help ethical hackers bypass restrictive Content Security Policies (CSP) and exploit XSS (Cross-Site Scr…☆380Updated last month
- Useful "Match and Replace" burpsuite rules☆351Updated 2 years ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆382Updated 5 months ago
- Local File Inclusion discovery and exploitation tool☆330Updated 9 months ago
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆301Updated last year
- ☆174Updated 2 months ago
- Smart context-based SSRF vulnerability scanner.☆357Updated 3 years ago
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆710Updated last month
- Enumerate / Dump Docker Registry☆180Updated last year
- unleashed ffuf☆224Updated 5 months ago