PortSwigger / site-map-extractor
☆10Updated 3 years ago
Related projects: ⓘ
- Kubernetes Scanner☆41Updated 2 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆26Updated 11 months ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆41Updated last year
- HTTP requests of FrontPage expolit☆23Updated 10 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆39Updated last year
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆22Updated 3 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- This extension redacts potentially sensitive header and parameter values from requests using Shannon Entropy analysis.☆12Updated 3 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆35Updated last year
- Just a simple SMTP server, implementation of @corpix smtpd library☆14Updated 4 years ago
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆27Updated 2 years ago
- Clickjacking PoC Generator☆35Updated 3 years ago
- ☆34Updated this week
- A collection of OSCE preparation resources.☆23Updated 4 years ago
- ☆0Updated 4 years ago
- Deploy a Private Burpsuite Collaborator using boto3 Python Library☆56Updated 4 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆50Updated 3 years ago
- Advanced Recon Tool☆26Updated 4 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Updated 5 months ago
- Pythonize Intruder Payload☆13Updated 3 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆39Updated 11 months ago
- Some Buffer Overflow Automation Scripts I'll be using between PWK labs and Exam!☆18Updated 3 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 3 years ago
- Return domains in CSP headers in http response☆15Updated 3 years ago
- Google Chrome Extension automates testing fundamental Web Problems via Chrome☆21Updated 3 years ago
- Burp Suite extension to discover assets from HTTP response.☆15Updated 3 years ago
- Interactsh deployment to AWS EC2 Instance with Terraform☆11Updated 2 years ago