PortSwigger / pentest-mapperLinks
A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
☆117Updated last year
Alternatives and similar repositories for pentest-mapper
Users that are interested in pentest-mapper are comparing it to the libraries listed below
Sorting:
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated 2 years ago
- Prototype Pollution Scanner☆120Updated 4 years ago
- Directory scans☆82Updated last year
- Burpsuite plugin for Interact.sh☆223Updated last year
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆115Updated last year
- CVE Collection of jQuery UI XSS Payloads☆119Updated 2 years ago
- BChecks collection for Burp Suite Professional☆98Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆182Updated 2 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated last year
- ☆88Updated last year
- ☆113Updated 2 years ago
- A more useful CSRF PoC generator on Burp Suite☆86Updated 2 years ago
- Custom scan profiles for use with Burp Suite Pro☆144Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 3 weeks ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- ImageMagick LFI PoC [CVE-2022-44268]☆52Updated last year
- ☆157Updated 3 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆67Updated last year
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆180Updated 3 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆124Updated 2 months ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆111Updated 3 years ago
- NotSoCereal: A Deserialization exploit playground☆52Updated 3 years ago
- All Type of Payloads☆136Updated last year
- Build your own reconnaissance system with Osmedeus Next Generation☆196Updated last week
- Advanced Reconnaissance and Web Application Discovery☆82Updated 3 years ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆137Updated 9 months ago