PortSwigger / sqli-py
SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
☆87Updated last year
Related projects: ⓘ
- ☆84Updated 7 months ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆72Updated 3 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆74Updated 3 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- ☆126Updated 2 years ago
- exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts☆161Updated last year
- ☆25Updated 4 years ago
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- ☆54Updated last year
- A Web-UI for subdomain enumeration (subfinder)☆53Updated 4 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆115Updated last year
- Burp Bounty profiles☆82Updated 2 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆38Updated last year
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- Data extraction tool for Docker Registry API☆123Updated 7 months ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆163Updated 3 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆114Updated last month
- Nuclei Templates to reproduce Cracking the lens's Research☆122Updated 2 years ago
- ☆31Updated 2 years ago
- Public Disclosures☆87Updated 2 years ago
- ☆127Updated 6 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆81Updated 6 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆159Updated 5 years ago
- Authenticated SSRF in Grafana☆76Updated 2 months ago
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆184Updated 3 years ago
- ☆89Updated this week
- Nuclei templates for K8S security scanning☆102Updated 2 years ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆155Updated 3 years ago
- pFuzz helps us to bypass web application firewall by using different methods at the same time.☆156Updated 3 years ago