PortSwigger / nginx-alias-traversalLinks
Burp extension to detect alias traversal via NGINX misconfiguration at scale.
☆54Updated 3 years ago
Alternatives and similar repositories for nginx-alias-traversal
Users that are interested in nginx-alias-traversal are comparing it to the libraries listed below
Sorting:
- Burp Bounty profiles☆83Updated 3 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Updated 4 years ago
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆61Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 5 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆82Updated 7 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆152Updated 4 years ago
- ☆59Updated 11 months ago
- Proof of concept for CVE-2020-5902☆72Updated 4 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆109Updated 3 years ago
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Updated 2 months ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- Expand urls into one url for each path depth☆33Updated 4 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 5 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Wraps projectdiscovery's cdncheck library to exclude CDN hosts from input passed over stdin☆44Updated 2 years ago
- Simple "postMessage logger" Chrome extension☆97Updated 5 years ago
- ☆37Updated 4 years ago
- ExtractSubdomainFromFDNS, updating☆33Updated 5 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆112Updated 6 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- Some of my bug bounty tools☆51Updated 5 years ago
- URL Screenshot Utility☆27Updated 2 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆71Updated 3 years ago
- ☆55Updated 2 years ago
- unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment☆27Updated 4 years ago
- ☆36Updated 6 years ago