PortSwigger / detect-dynamic-js
The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and aid in finding user/session data.
☆13Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for detect-dynamic-js
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- PHP tool to test XSS☆23Updated 5 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 5 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆22Updated 7 years ago
- A simple grep user interface for searching code which can be used for SAST.☆8Updated 5 years ago
- A Pythonic wrapper to MassDNS☆23Updated 6 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- Simple webinterface combining different recon tools.☆12Updated 6 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 5 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 7 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated last year
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- ☆35Updated 4 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 7 years ago
- ☆20Updated 4 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆18Updated 4 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated last year
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- Burp Intruder File Payload Generator☆18Updated 5 years ago
- This changes the style of Burp Suite's Repeater tabs to help the testers☆28Updated 5 years ago
- Alpha version code of Recon UI☆14Updated 6 years ago
- ☆22Updated 2 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆50Updated 2 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆31Updated 3 years ago
- ☆31Updated 5 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago