PortSwigger / bypass-wafLinks
Add headers to all Burp requests to bypass some WAF products
☆42Updated last year
Alternatives and similar repositories for bypass-waf
Users that are interested in bypass-waf are comparing it to the libraries listed below
Sorting:
- A Python script to parse net blocks & domain names from SPF record☆84Updated 5 years ago
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆61Updated 3 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 2 months ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Updated 4 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 5 years ago
- ☆48Updated 4 years ago
- Burp Bounty profiles☆83Updated 3 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- Collection of scanner checks missing in Burp☆31Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆109Updated 3 years ago
- Host Header Injection Checker☆81Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- My recon script☆50Updated 5 years ago
- subdomain bruteforce list☆101Updated 8 months ago
- Image Tragick Exploit Tool Using Burp Collaborator☆36Updated last year
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated 2 years ago
- Virtual host wordlist☆51Updated 4 years ago
- ☆43Updated 2 years ago
- Misc bounty and vulndisc things☆84Updated 4 years ago
- A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.☆23Updated last year
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆58Updated 4 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 5 years ago
- Generate wordlists for fuzzing API method names☆54Updated 4 years ago
- A Web-UI for subdomain enumeration (subfinder)☆54Updated 5 years ago
- Some of my bug bounty tools☆51Updated 5 years ago
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆58Updated 3 years ago