PortSwigger / sensitive-discoverer
Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.
☆20Updated 4 months ago
Alternatives and similar repositories for sensitive-discoverer:
Users that are interested in sensitive-discoverer are comparing it to the libraries listed below
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Updated 3 years ago
- tool that generates bypasses for open redirects☆52Updated 3 years ago
- Springboot detection☆21Updated 3 years ago
- A fingerprint generation helper for nuclei network templates☆72Updated 2 years ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- The purpose of this repo is to share my research☆14Updated 2 weeks ago
- ☆35Updated 2 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆29Updated last year
- ☆30Updated last year
- cve-2022-42889 Text4Shell CVE-2022-42889 affects Apache Commons Text versions 1.5 through 1.9. It has been patched as of Commons Text ver…☆39Updated 2 years ago
- CVE-2022-41040 nuclei template☆18Updated 2 years ago
- Another tool for exploiting CVE-2017-9248, a cryptographic weakness in Telerik UI for ASP.NET AJAX dialog handler.☆50Updated 8 months ago
- ☆35Updated 3 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆59Updated last year
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆39Updated 3 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆42Updated 2 years ago
- A burp-suite plugin that extract all parameter names from in-scope requests☆29Updated 3 years ago
- ☆26Updated 10 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆49Updated last year
- Spring4Shell Burp Scanner☆71Updated 3 years ago
- WEB API fuzzing☆24Updated last year
- [CVE-2020-14882] Oracle WebLogic Server Authenticated Remote Code Execution (RCE)☆13Updated 4 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST RCE☆36Updated 2 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆112Updated 2 months ago
- Exploits targeting vBulletin.☆76Updated 2 years ago
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- Copy as XMLHttpRequest BurpSuite extension☆31Updated 4 years ago
- Exploit for Microsoft SharePoint 2019☆13Updated last year
- PoC for CVE-2022-23940☆10Updated 3 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆88Updated last year