PortSwigger / bypass-bot-detection

Related projects ⓘ

Alternatives and complementary repositories for bypass-bot-detection

• Sn1r / Forbidden-Buster
  A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…
  ☆165Updated 2 months ago
• c0dejump / HExHTTP
  Header Exploitation HTTP
  ☆143Updated last week
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆246Updated 6 months ago
• 0x999-x / jsluicepp
  jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice
  ☆245Updated 7 months ago
• PortSwigger / bambdas
  Bambdas collection for Burp Suite Professional and Community.
  ☆206Updated 3 weeks ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆107Updated 4 months ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆338Updated this week
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆120Updated this week
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆163Updated 7 months ago
• BugBountyzip / Bambdas
  ☆130Updated 2 weeks ago
• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆142Updated last month
• nxenon / grpc-pentest-suite
  gRPC-Web Pentesting Suite + Burp Suite Extension
  ☆165Updated 4 months ago
• hansmach1ne / LFImap
  Local File Inclusion discovery and exploitation tool
  ☆226Updated last month
• nullenc0de / gofuzz
  ☆156Updated 2 months ago
• nxenon / h2spacex
  HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆147Updated 2 weeks ago
• doyensec / Session-Hijacking-Visual-Exploitation
  Session Hijacking Visual Exploitation
  ☆194Updated 8 months ago
• kevin-mizu / domloggerpp
  A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.
  ☆481Updated this week
• Net-hunter121 / API-Wordlist
  ☆235Updated 3 years ago
• 0xAnuj / Blinks
  Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…
  ☆106Updated 2 weeks ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆342Updated last year
• intrudir / BypassFuzzer
  Fuzz 401/403/404 pages for bypasses
  ☆254Updated 3 months ago
• bebiksior / EvenBetter
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆135Updated 2 weeks ago
• edoardottt / csprecon
  Discover new target domains using Content Security Policy
  ☆383Updated this week
• devanshbatham / rayder
  A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows
  ☆275Updated last year
• gprime31 / WAF-bypass-xss-payloads
  XSS payloads for bypassing WAF. This repository is updating continuously.
  ☆224Updated 8 months ago
• daffainfo / match-replace-burp
  Useful "Match and Replace" burpsuite rules
  ☆339Updated last year
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆65Updated 8 months ago
• bnematzadeh / LoggerPlusPlus-API-Filters
  A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles
  ☆211Updated last month
• dhmosfunk / CVE-2023-25690-POC
  CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …
  ☆270Updated 3 months ago