PortSwigger / http-request-smuggler
☆983Updated 2 weeks ago
Alternatives and similar repositories for http-request-smuggler:
Users that are interested in http-request-smuggler are comparing it to the libraries listed below
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,721Updated 11 months ago
- Automated HTTP Request Repeating With Burp Suite☆867Updated 3 years ago
- Finds unknown classes of injection vulnerabilities☆672Updated last week
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.☆1,592Updated 2 weeks ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆420Updated 5 months ago
- ☆1,318Updated 2 weeks ago
- This repository contains all the supplement material for the book "The art of sub-domain enumeration"☆645Updated 6 years ago
- Advanced Burp Suite Logging Extension☆657Updated 10 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆864Updated 3 years ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…☆1,004Updated 4 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆716Updated last year
- A tool for embedding XXE/XML exploits into different filetypes☆1,074Updated 4 months ago
- ☆676Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆1,016Updated last month
- A Powerful Subdomain Takeover Tool☆948Updated last year
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆721Updated 5 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,619Updated 4 months ago
- SSRF (Server Side Request Forgery) testing resources☆2,396Updated 6 months ago
- List DTDs and generate XXE payloads using those local DTDs.☆625Updated last year
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆1,939Updated last year
- A cheatsheet for exploiting server-side SVG processors.☆729Updated 4 years ago
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intel…☆964Updated 3 months ago
- 🎯 Fast CORS misconfiguration vulnerabilities scanner☆1,078Updated 3 years ago
- Fetches javascript file from a list of URLS or subdomains.☆766Updated last year
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆839Updated last month
- A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.☆709Updated 11 months ago
- The XSS Hunter service - a portable version of XSSHunter.com☆1,520Updated 2 years ago
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆999Updated 3 years ago
- A DNS rebinding attack framework.☆1,082Updated last week
- A wordlist of API names for web application assessments☆807Updated 2 months ago