RedSection / pFuzz
pFuzz helps us to bypass web application firewall by using different methods at the same time.
☆157Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for pFuzz
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- ☆206Updated 3 years ago
- Spring4Shell Burp Scanner☆65Updated 2 years ago
- Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.☆45Updated 3 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆159Updated last year
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 2 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆110Updated 2 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆121Updated 2 years ago
- ☆163Updated 2 years ago
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆60Updated 3 months ago
- A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration☆77Updated 4 years ago
- Build your own reconnaissance system with Osmedeus Next Generation☆180Updated last month
- A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.☆104Updated 2 weeks ago
- 🚪 Quick & dirty Wordpress Command Execution Shell☆66Updated 2 years ago
- A Web-UI for subdomain enumeration (subfinder)☆53Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- ☆51Updated 3 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆176Updated 2 years ago
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆105Updated 3 years ago
- ☆33Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆116Updated 3 years ago
- ☆25Updated 4 years ago
- Hidden parameters discovery suite☆221Updated 2 years ago