PortSwigger / burp-extensions-montoya-api

Related projects: ⓘ

• PortSwigger / burp-extensions-montoya-api-examples
  Examples for using the Montoya API with Burp Suite
  ☆101Updated 9 months ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆159Updated 5 years ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆182Updated 3 months ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆276Updated 5 months ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆395Updated 2 years ago
• hackvertor / hackvertor
  ☆159Updated last month
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆197Updated 2 months ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆382Updated 5 months ago
• synfron / ReshaperForBurp
  Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules
  ☆91Updated last week
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆229Updated this week
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆701Updated 3 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆110Updated 4 years ago
• ambionics / wrapwrap
  Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
  ☆168Updated 3 months ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆124Updated 3 weeks ago
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆270Updated last year
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆344Updated 3 weeks ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆548Updated 3 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆96Updated 5 months ago
• PortSwigger / auth-analyzer
  ☆72Updated 4 months ago
• httpvoid / CVE-Reverse
  ☆277Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆117Updated 9 months ago
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆158Updated last month
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆210Updated this week
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆122Updated 2 years ago
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆185Updated 2 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆242Updated 4 months ago
• c53elyas / CVE-2023-33733
  CVE-2023-33733 reportlab RCE
  ☆109Updated last year
• LOURC0D3 / CVE-2024-4367-PoC
  CVE-2024-4367 & CVE-2024-34342 Proof of Concept
  ☆112Updated 3 months ago
• ARPSyndicate / bug-bounty-domains
  Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]
  ☆212Updated 3 weeks ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆184Updated 3 years ago