RedSection / pFuzz
pFuzz helps us to bypass web application firewall by using different methods at the same time.
☆157Updated 4 years ago
Alternatives and similar repositories for pFuzz:
Users that are interested in pFuzz are comparing it to the libraries listed below
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 4 years ago
- ☆205Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆60Updated 7 months ago
- Hidden parameters discovery suite☆222Updated 2 years ago
- Spring4Shell Burp Scanner☆71Updated 2 years ago
- A framework for bug hunting or pentesting targeting websites that have CVE-2021-41773 Vulnerability in public☆63Updated 3 years ago
- Proof-of-concept exploit for CVE-2021-26855 and CVE-2021-27065. Unauthenticated RCE in Exchange.☆45Updated 3 years ago
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆105Updated 3 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆124Updated 3 years ago
- A Web-UI for subdomain enumeration (subfinder)☆54Updated 4 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆112Updated last month
- A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.☆111Updated 4 months ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆118Updated 2 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆161Updated last year
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆132Updated last week
- Exploit and Check Script for CVE 2022-1388☆58Updated 2 years ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 3 years ago
- 🚪 Quick & dirty Wordpress Command Execution Shell☆66Updated 3 years ago
- Apache Spark Shell Command Injection Vulnerability☆88Updated 2 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆106Updated 10 months ago
- Proof of Concept for CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207☆110Updated last year
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆116Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- ☆181Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆102Updated last year
- Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.☆101Updated 3 years ago