PortSwigger / url-cheatsheet-data
This is the data that powers the PortSwigger URL validation bypass cheat sheet.
☆29Updated 2 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for url-cheatsheet-data
- Awesome MXSS ??☆45Updated last month
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- ☆65Updated last month
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆55Updated last week
- ☆92Updated 3 years ago
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆86Updated 9 months ago
- ☆71Updated 6 months ago
- An extension to use Semgrep inside Burp Suite.☆87Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆133Updated 2 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆116Updated last week
- unleashed ffuf☆95Updated 4 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆104Updated 4 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆60Updated 3 months ago
- ☆79Updated 6 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆52Updated 5 months ago
- ☆55Updated last year
- Utility for creating ZipSlip archives☆66Updated last year
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- Same Origin XSS challenge☆56Updated 2 years ago
- Client-Side Prototype Pollution Tools☆84Updated 3 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆121Updated 2 years ago
- ☆158Updated 3 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆83Updated 5 months ago
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- Security Advisories☆32Updated 11 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆247Updated 5 months ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite …☆35Updated 3 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆85Updated 7 months ago
- Burp Suite's extension to scan and crawl Single Page Applications☆99Updated last year