PortSwigger/web-cache-deception-scanner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PortSwigger/web-cache-deception-scanner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PortSwigger/web-cache-deception-scanner)

Close

PortSwigger / web-cache-deception-scannerView on GitHubMore

• External links
• Readme badge

A Burp Extension to test applications for vulnerability to the Web Cache Deception attack

☆30Nov 23, 2017Updated 8 years ago

Alternatives and similar repositories for web-cache-deception-scanner

Users that are interested in web-cache-deception-scanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• sploutchy / Certipy

  View on GitHub
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆16Mar 20, 2025Updated last year
• fcavallarin / burp-dom-scanner

  View on GitHub
  Burp Suite's extension to scan and crawl Single Page Applications
  ☆107Apr 14, 2023Updated 3 years ago
• surendirans7777 / Write-up

  View on GitHub
  Nothing special --- Some resources to save my time
  ☆20Aug 14, 2020Updated 5 years ago
• arbazkiraak / web-cache-deception-checker

  View on GitHub
  Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages
  ☆44Nov 23, 2021Updated 4 years ago
• nu11secur1ty / Linux_hardening_and_security

  View on GitHub
  ☆10Feb 22, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• rivsec / wordpress-rest-enum

  View on GitHub
  A WordPress rest-enumeration script
  ☆10Jun 3, 2026Updated last week
• gcxtx / Zoom

  View on GitHub
  Automatic & lightning fast wordpress vulnerability scanner
  ☆43Nov 19, 2021Updated 4 years ago
• daehee / mildew

  View on GitHub
  Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs
  ☆96Jan 21, 2021Updated 5 years ago
• KathanP19 / hackerone_wordlist

  View on GitHub
  The wordlists that have been compiled using disclosed reports at HackerOne bug bounty platform
  ☆11Jun 28, 2020Updated 5 years ago
• hoodoer / WP-XSS-Admin-Funcs

  View on GitHub
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆57Oct 6, 2020Updated 5 years ago
• PortSwigger / xss-cheatsheet

  View on GitHub
  ☆18Apr 9, 2024Updated 2 years ago
• mhaskar / CVE-2019-20224

  View on GitHub
  The offical exploit for Pandora v7.0NG Post-auth Remote Code Execution CVE-2019-20224
  ☆14Jan 10, 2020Updated 6 years ago
• neex / ghostinthepdf

  View on GitHub
  ☆169Oct 4, 2021Updated 4 years ago
• darrenmartyn / sophucked

  View on GitHub
  CVE-2020-25223
  ☆11Sep 13, 2021Updated 4 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• punixcorn / peda

  View on GitHub
  PEDA - Python Exploit Development Assistance for GDB
  ☆13Jul 13, 2024Updated last year
• omespino / gcs_instace_takeover

  View on GitHub
  ☆22Aug 3, 2024Updated last year
• felipecaon / wpsechelper

  View on GitHub
  Seecurity helper tool to detect entry points of WordPress plugins
  ☆10May 16, 2024Updated 2 years ago
• gdraperi / slurp-1

  View on GitHub
  S3 bucket enumerator
  ☆30Apr 7, 2019Updated 7 years ago
• nficano / pyfieri

  View on GitHub
  Full Throttle Guy Fieri Menu Generator.
  ☆12Dec 21, 2015Updated 10 years ago
• ree4pwn / my-nuclei-templates

  View on GitHub
  ☆11Dec 5, 2020Updated 5 years ago
• arimaqz / strfile-encryptor

  View on GitHub
  string/file/shellcode encryptor using AES/XOR
  ☆11Oct 15, 2023Updated 2 years ago
• lizmat / raku-all-modules

  View on GitHub
  Combination of all modules from the Raku ecosystem, for easier 'git grep'ability
  ☆10Jun 6, 2024Updated 2 years ago
• usnistgov / FIPS201

  View on GitHub
  Working draft of FIPS 201-3
  ☆19May 6, 2024Updated 2 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• cylentsec / nmapurls

  View on GitHub
  Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…
  ☆44Jun 15, 2025Updated 11 months ago
• 0xElkot / My-Nuclei-Templates

  View on GitHub
  ☆35Aug 2, 2022Updated 3 years ago
• twilio-labs / gordon

  View on GitHub
  Gordon is status check Github app to enforce and validate about.yaml file specifications in a repository during pull requests to drive co…
  ☆20Feb 4, 2025Updated last year
• tehstoni / Sublime-Nmap-Syntax

  View on GitHub
  A Sublime Text plugin that allows for Nmap syntax highlighting
  ☆13Sep 14, 2024Updated last year
• jasonish / go-idsrules

  View on GitHub
  A Go(lang) IDS rule parser
  ☆13Jun 10, 2019Updated 7 years ago
• cybercdh / bucket-finder

  View on GitHub
  Reads in a list of domains or subdomains and crawls them for references to S3 buckets
  ☆10Nov 21, 2023Updated 2 years ago
• rix4uni / pyxss

  View on GitHub
  Simple XSS vulnerability checker tool very useful with xsschecker.
  ☆27Nov 21, 2025Updated 6 months ago
• lkarlslund / topdomains

  View on GitHub
  Top 17 million most popular domains as CSV (from Google CRUX dataset)
  ☆37Jan 19, 2024Updated 2 years ago
• zalando-stups / python-tokens

  View on GitHub
  Python library to manage OAuth access tokens
  ☆14Mar 19, 2019Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• mclarkson / check_diskstat

  View on GitHub
  Linux disk IO check. Reads /sys filesystem directly to query tps, read, write, avg. request size, avg. queue size and avg. wait time.
  ☆14May 28, 2018Updated 8 years ago
• rtandr01d / zerologon

  View on GitHub
  Scan for and exploit the zerologon vulnerability.
  ☆10Sep 15, 2020Updated 5 years ago
• p0dalirius / CVE-2022-26159-Ametys-Autocompletion-XML

  View on GitHub
  A python exploit to automatically dump all the data stored by the auto-completion plugin of Ametys CMS to a local sqlite database file.
  ☆14May 3, 2022Updated 4 years ago
• MikeTheHash / CVE-2018-5955

  View on GitHub
  An exploit for CVE-2018-5955 GitStack 2.3.10 Unauthenticated RCE
  ☆10Nov 15, 2024Updated last year
• noraj / DCDetector

  View on GitHub
  Spot all domain controllers in a Microsoft Active Directory environment. Find computer name, FQDN, and IP address(es) of all DCs.
  ☆20Jun 23, 2024Updated last year
• llamaonsecurity / rio

  View on GitHub
  A handy plugin for copying requests/responses directly from Burp, some extra magic included.
  ☆13Oct 15, 2021Updated 4 years ago
• sysopfb / VM_Timing_Detect

  View on GitHub
  ☆13Oct 14, 2016Updated 9 years ago