RUB-NDS / SAML-XXE-Test

Related projects: ⓘ

• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 5 years ago
• gwen001 / testxss
  PHP tool to test XSS
  ☆23Updated 4 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 5 years ago
• silentsignal / ActiveScan3Plus
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Updated 7 years ago
• the-bumble / Burp-Scanner-OOB-Checks
  This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter
  ☆20Updated 7 years ago
• eur0pa / goGetBucket
  A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.
  ☆26Updated 5 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 6 years ago
• Den1al / pymassdns
  A Pythonic wrapper to MassDNS
  ☆23Updated 6 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆22Updated 7 years ago
• gradiuscypher / bounty_tools
  Various tools for managing bug bounty recon and exploration.
  ☆46Updated last year
• rojan-rijal / ReconUI
  Alpha version code of Recon UI
  ☆14Updated 6 years ago
• ettic-team / EndpointFinder-Burp
  ☆31Updated 5 years ago
• karelorigin / XSS-Problems
  ☆34Updated 4 years ago
• almroot / dnsresolvers
  A bash script that fetches and maintains thousands of DNS resolvers
  ☆65Updated 4 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆35Updated last year
• jayeshchauhan / SKANDA
  OWASP Skanda - SSRF Exploitation Framework
  ☆36Updated 11 years ago
• ecbftw / poc
  A collection of published exploits and proof-of-concept code.
  ☆19Updated 6 years ago
• twelvesec / BearerAuthToken
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆45Updated 5 years ago
• yehgdotnet / S3Scanner
  Scan for open S3 buckets and dump
  ☆35Updated 6 years ago
• MrTaherAmine / pentest-management
  Simple webinterface combining different recon tools.
  ☆12Updated 6 years ago
• BishopFox / IDontSpeakSSL-deprecated
  Simple tool based on sslyze to scan large scope and provide SSL/TLS vulnerabilities
  ☆52Updated 4 years ago
• federicodotta / BurpJDSer-ng-edited
  Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…
  ☆20Updated 7 months ago
• PortSwigger / burp-smart-buster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆31Updated 6 years ago
• GoSecure / burp-ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆31Updated 3 years ago
• snyff / oauthsecurity
  OAuth Security Cheatsheet
  ☆39Updated 10 years ago
• jstnkndy / scripts
  Scripts that I've written that others may find useful
  ☆14Updated 2 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆35Updated 4 years ago
• Damian89 / CommandGenInterface
  ☆17Updated this week