PortSwigger / pentest-mapperLinks
A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
☆120Updated last year
Alternatives and similar repositories for pentest-mapper
Users that are interested in pentest-mapper are comparing it to the libraries listed below
Sorting:
- ☆107Updated last year
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆166Updated 2 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆117Updated 2 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated 2 years ago
- Burpsuite plugin for Interact.sh☆227Updated last year
- Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework☆170Updated 2 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆191Updated 3 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- ☆157Updated 3 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆199Updated 2 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆244Updated 7 months ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- 🔭 Collection of regexp pattern for security passive scanning☆117Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆75Updated 2 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆174Updated last year
- ☆171Updated 3 years ago
- Directory scans☆83Updated last year
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆75Updated last year
- Prototype Pollution Scanner☆126Updated 4 years ago
- A tool that automates the search for IDOR vulnerabilities in web apps and APIs☆61Updated 4 years ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆112Updated 3 years ago
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆60Updated 3 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆122Updated 3 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 4 months ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆78Updated 5 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆110Updated 3 years ago
- NotSoCereal: A Deserialization exploit playground☆53Updated 3 years ago