PortSwigger / url-cheatsheet-data
This is the data that powers the PortSwigger URL validation bypass cheat sheet.
☆30Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for url-cheatsheet-data
- ☆80Updated 6 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆121Updated 2 years ago
- Awesome MXSS ??☆45Updated last month
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- unleashed ffuf☆96Updated 4 months ago
- Same Origin XSS challenge☆56Updated 2 years ago
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆86Updated 9 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 4 months ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆92Updated last week
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆52Updated 5 months ago
- Burp Suite's extension to scan and crawl Single Page Applications☆99Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆107Updated 4 months ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- ☆65Updated last month
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- ☆92Updated 3 years ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆119Updated 2 weeks ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆133Updated 2 months ago
- BChecks collection for Burp Suite Professional☆83Updated 5 months ago
- ☆71Updated 6 months ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- ☆56Updated last year
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆59Updated 2 weeks ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆52Updated last year
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆248Updated 6 months ago
- jws2pubkey tool☆37Updated 5 months ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- Proof of Concepts for unsafe deserialization in Ruby☆14Updated last month