PortSwigger / retire-js

Related projects: ⓘ

• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆41Updated last year
• CompassSecurity / burp-copy-request-response
  Burp extension for quickly copying request/response data.
  ☆26Updated this week
• PortSwigger / additional-scanner-checks
  Collection of scanner checks missing in Burp
  ☆26Updated 4 years ago
• PortSwigger / hunt-scanner
  ☆17Updated 2 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆37Updated 9 months ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• PortSwigger / co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆22Updated 6 months ago
• PortSwigger / openapi-parser
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆39Updated 7 months ago
• nikhil1232 / Bucket-Flaws
  Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations
  ☆55Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• l4yton / js-parse
  ☆33Updated this week
• PortSwigger / add-custom-header
  A Burp Suite extension to add a custom header (e.g. JWT)
  ☆18Updated 3 years ago
• DeepakPawar95 / cswsh
  A command-line tool for Cross-Site WebSocket Hijacking
  ☆39Updated 11 months ago
• honoki / tools
  A collection of simple tools and poc-builders
  ☆39Updated last year
• cinerieus / as3nt
  Another Subdomain ENumeration Tool
  ☆10Updated last year
• BountyStrike / Emissary
  Send notifications on different channels such as Slack, Telegram, Discord etc.
  ☆39Updated last year
• PortSwigger / site-map-extractor
  ☆10Updated 3 years ago
• masahiro331 / CVE-2020-8165
  ☆42Updated last year
• Static-Flow / BurpSuiteTeamServer
  This is the Go Server that relays all HTTP requests and responses between clients.
  ☆26Updated 11 months ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆54Updated 5 years ago
• denniskniep / GQLRaider
  GQL Burp Extension
  ☆21Updated 2 years ago
• nuncan / slurp
  The original slurp source
  ☆32Updated 5 years ago
• bugbounty-site / exploits
  ☆45Updated this week
• codewatchorg / Burp-UserAgent
  Automatically modify the User-Agent header in all Burp requests
  ☆52Updated 6 years ago
• YashGoti / gal
  Get all possible href | src | url from target url or domain
  ☆40Updated 4 years ago
• freddyb / 0e.vc
  a shared short domain for XSS and other hacks
  ☆31Updated 2 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆96Updated 2 years ago
• VDA-Labs / websocket-harness
  Use normal web pentest tools to hack Websockets
  ☆17Updated 4 years ago
• Sambal0x / Recon-tools
  Some of my bug bounty tools
  ☆47Updated 4 years ago