PortSwigger / portable-data-exfiltration
This repo contains all the injections mentioned in my talk and enumerators.
☆121Updated 11 months ago
Related projects ⓘ
Alternatives and complementary repositories for portable-data-exfiltration
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- ☆170Updated 3 weeks ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- ☆278Updated 3 years ago
- Turbo Intruder Scripts☆216Updated 4 years ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…☆101Updated 8 months ago
- Unofficial documentation for the great tool Param Miner☆173Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Workshop given at Hack in Paris 2019☆121Updated last year
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆39Updated last year
- Burp Extension that copies a request and builds a FFUF skeleton☆107Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- Searching for virtual hosts among non-resolvable domains☆86Updated 4 years ago
- WordPress Plugin Update Confusion☆67Updated 2 years ago
- DNS rebinding toolkit☆250Updated last year
- Burp Bounty profiles☆82Updated 2 years ago
- ☆88Updated 9 months ago
- ☆71Updated 6 months ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆150Updated last year
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆205Updated 4 months ago
- Burp Bounty profiles compilation, feel free to contribute!☆145Updated 3 years ago
- Wordlist to bruteforce for LFI☆118Updated 5 years ago
- CRLF and open redirect fuzzer☆109Updated 3 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Updated 11 months ago
- ☆158Updated 3 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆84Updated last month
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆124Updated 4 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆252Updated 2 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆113Updated 5 years ago