PortSwigger / pentest-mapperLinks
A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
☆119Updated last year
Alternatives and similar repositories for pentest-mapper
Users that are interested in pentest-mapper are comparing it to the libraries listed below
Sorting:
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆120Updated 2 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆117Updated 2 years ago
- Directory scans☆83Updated last year
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆162Updated 2 years ago
- ☆157Updated 3 years ago
- Burpsuite plugin for Interact.sh☆227Updated last year
- ☆103Updated last year
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆187Updated 3 years ago
- CVE Collection of jQuery UI XSS Payloads☆119Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆197Updated 2 weeks ago
- Execute Trickest workflows right from your terminal☆93Updated last week
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆245Updated 5 months ago
- ☆171Updated 3 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆73Updated 2 years ago
- Prototype Pollution Scanner☆126Updated 4 years ago
- Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework☆168Updated 2 years ago
- Make URL path combinations using a wordlist☆173Updated last year
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆121Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆181Updated 3 years ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆184Updated last year
- Full Nuclei automation script with logic explanation.☆245Updated 3 years ago
- All Type of Payloads☆136Updated last year
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆75Updated last year
- LFI Payloads List coolected from github repos☆81Updated 5 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- Custom scan profiles for use with Burp Suite Pro☆144Updated last year
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆125Updated last month
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆130Updated 3 years ago