PortSwigger / detect-dynamic-jsLinks
The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and aid in finding user/session data.
☆13Updated 6 years ago
Alternatives and similar repositories for detect-dynamic-js
Users that are interested in detect-dynamic-js are comparing it to the libraries listed below
Sorting:
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 7 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆24Updated 8 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 6 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆32Updated 7 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Simple webinterface combining different recon tools.☆12Updated 7 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- RFD Checker - security CLI tool to test Reflected File Download issues☆64Updated 6 years ago
- ☆34Updated 5 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 12 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 7 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆32Updated 4 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 12 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 4 years ago
- A collection of scripts used to interact with the Burp Rest API☆52Updated 6 years ago
- ☆21Updated 5 years ago
- Exploit insecure crossdomain.xml files.☆26Updated 8 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆47Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆30Updated 2 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 3 years ago
- Scan for open S3 buckets and dump☆38Updated 7 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 6 years ago
- Alpha version code of Recon UI☆14Updated 7 years ago
- little scripts of bash stuff that i've found handy.☆15Updated 6 years ago
- Practice Web App written in python with some vulnerabilities.☆34Updated 4 years ago