PortSwigger / burp-extensions-montoya-api

Related projects ⓘ

Alternatives and complementary repositories for burp-extensions-montoya-api

• PortSwigger / burp-extensions-montoya-api-examples
  Examples for using the Montoya API with Burp Suite
  ☆114Updated 11 months ago
• hackvertor / hackvertor
  ☆170Updated 3 weeks ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆185Updated 5 months ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆281Updated 8 months ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆162Updated 5 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆398Updated 2 years ago
• synfron / ReshaperForBurp
  Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules
  ☆92Updated 2 weeks ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆198Updated 4 months ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆395Updated last month
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆220Updated 2 months ago
• PortSwigger / url-cheatsheet-data
  This is the data that powers the PortSwigger URL validation bypass cheat sheet.
  ☆30Updated last month
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆270Updated last year
• PortSwigger / auth-analyzer
  ☆71Updated 6 months ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆134Updated 2 months ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆113Updated 5 years ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆232Updated last week
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆206Updated 3 weeks ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆712Updated 3 years ago
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆121Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆121Updated 11 months ago
• LOURC0D3 / CVE-2024-4367-PoC
  CVE-2024-4367 & CVE-2024-34342 Proof of Concept
  ☆136Updated 5 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆246Updated 6 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆354Updated last month
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆159Updated 3 months ago
• synacktiv / php_filter_chains_oracle_exploit
  A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
  ☆228Updated 5 months ago
• ambionics / wrapwrap
  Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
  ☆177Updated last month
• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆186Updated 4 months ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆555Updated 3 years ago
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆37Updated 5 months ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago