Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.
☆23Nov 26, 2024Updated last year
Alternatives and similar repositories for sensitive-discoverer
Users that are interested in sensitive-discoverer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Sensitive Discoverer, a Burp extension to discovers sensitive information inside HTTP messages.☆50Jan 26, 2026Updated last month
- A script used to query the dehashed API and filter for more useful results☆16Jun 20, 2021Updated 4 years ago
- Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.☆16Jul 11, 2025Updated 8 months ago
- ☆26Sep 1, 2022Updated 3 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Oct 8, 2017Updated 8 years ago
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- HaE - BurpSuite Highlighter and Extractor☆33Jan 19, 2026Updated 2 months ago
- A quick reference script that can easily display reverse shells for different languages.☆20May 28, 2020Updated 5 years ago
- use python on windows with full submodule support without installation☆30Jan 23, 2025Updated last year
- CVE-2025-31324, SAP Exploit☆25Apr 28, 2025Updated 10 months ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆30Oct 21, 2025Updated 5 months ago
- PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registra…☆38Dec 28, 2025Updated 2 months ago
- ☆16Mar 11, 2024Updated 2 years ago
- burp suite插件☆13Jul 9, 2023Updated 2 years ago
- ☆21Dec 22, 2020Updated 5 years ago
- ☆42Dec 22, 2020Updated 5 years ago
- Analyze an APK archive.☆28Feb 24, 2024Updated 2 years ago
- 一个简单的集成化渗透测试工具☆19Jun 7, 2022Updated 3 years ago
- 内存马生成工具 Tomcat、Weblogic、CMD、Behinder、Godzilla、Suo5......☆31Feb 18, 2025Updated last year
- Make AWS IAM policies smaller by adding wildcards to actions.☆19Mar 14, 2026Updated last week
- Community Eventing and Scripting examples☆19Aug 11, 2025Updated 7 months ago
- Proof-of-concept exploit for CVE-2024-25153.☆42Mar 13, 2024Updated 2 years ago
- Simple Django to show post-exploitation options when server-side template injection (SSTI) is present in app using Django Templates.☆24Jun 1, 2021Updated 4 years ago
- Visually explore your JMH benchmarks on Jenkins!☆14Aug 6, 2024Updated last year
- Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pen…☆13May 11, 2023Updated 2 years ago
- BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor wit…☆13Nov 18, 2022Updated 3 years ago
- 文件上传,图片上传(后缀名验证,文件类型验证),大文件分片上传,“秒传”,断点续传,传输失败自动重试,手动重试☆10Apr 14, 2018Updated 7 years ago
- 红队命令生成器,输入固定参数,输出常用命令☆42Jul 31, 2022Updated 3 years ago
- psychoPATH - hunting file uploads & LFI in the dark. This tool is a customisable payload generator designed for blindly detecting LFI & w…☆19Jun 28, 2018Updated 7 years ago
- NTLM/Negotiate authentication over HTTP that supports Pass The Hash Mode (PtH)☆17Sep 13, 2024Updated last year
- Place for random PoCs☆18May 21, 2020Updated 5 years ago
- WTP - 一个动态线程池管理系统☆14Aug 16, 2022Updated 3 years ago
- Apache Airflow < 2.4.0 DAG example_bash_operator RCE POC☆41Nov 19, 2022Updated 3 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- VHostChecker takes a csv list of targets in the form of domain,ip,port and runs 4 seperate connection checks to get a quick sense of how …☆33Sep 14, 2023Updated 2 years ago
- A list of universities with vulnerability disclosure policies☆13Jul 10, 2020Updated 5 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆166Oct 28, 2025Updated 4 months ago
- 对原版JNDIExploit进行修改增加线程和JMX注入内存马☆17Apr 23, 2025Updated 11 months ago
- LeakIX maintained plugins implementing the l9format golang plugin interface.☆12Dec 9, 2021Updated 4 years ago