PortSwigger / nginx-alias-traversal
Burp extension to detect alias traversal via NGINX misconfiguration at scale.
☆53Updated 3 years ago
Alternatives and similar repositories for nginx-alias-traversal:
Users that are interested in nginx-alias-traversal are comparing it to the libraries listed below
- Burp Bounty profiles☆82Updated 3 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆64Updated 4 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 3 years ago
- URL Screenshot Utility☆27Updated last year
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆90Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆108Updated 3 years ago
- jenkinz is a tool to retrieve every build for every job ever created and run on a given Jenkins instance.☆67Updated 5 years ago
- ☆59Updated 9 months ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆43Updated 2 years ago
- ☆37Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- ☆44Updated 4 years ago
- ☆46Updated 3 years ago
- Authenticated SSRF in Grafana☆81Updated 10 months ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆152Updated 4 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆64Updated 5 years ago
- unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment☆27Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆82Updated 7 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- Find orphaned IP's on cloud services☆29Updated 5 years ago
- Simple "postMessage logger" Chrome extension☆96Updated 4 years ago
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆37Updated 5 years ago
- ☆19Updated 5 years ago
- Extract relative urls from a heap snapshot☆87Updated 3 years ago