SOC-Community / ioc-database

Related projects ⓘ

Alternatives and complementary repositories for ioc-database

• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆2,875Updated last year
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago
• emadshanab / Nuclei-Templates-Collection
  Nuclei Templates Collection
  ☆911Updated 6 months ago
• chenjj / CORScanner
  🎯 Fast CORS misconfiguration vulnerabilities scanner
  ☆1,049Updated 2 years ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,820Updated 10 months ago
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,906Updated 3 weeks ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,354Updated last month
• sting8k / BurpSuite_403Bypasser
  Burpsuite Extension to bypass 403 restricted directory
  ☆1,567Updated last year
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,325Updated 3 months ago
• arkadiyt / bounty-targets-data
  This repo contains hourly-updated data dumps of bug bounty platform scopes (like Hackerone/Bugcrowd/Intigriti/etc) that are eligible for …
  ☆3,162Updated this week
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆374Updated last year
• projectdiscovery / nuclei-burp-plugin
  Nuclei plugin for BurpSuite
  ☆1,194Updated 2 months ago
• BlackFan / client-side-prototype-pollution
  Prototype Pollution and useful Script Gadgets
  ☆1,405Updated 9 months ago
• allanlw / svg-cheatsheet
  A cheatsheet for exploiting server-side SVG processors.
  ☆696Updated 4 years ago
• zricethezav / h1domains
  HackerOne "in scope" domains
  ☆400Updated this week
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,133Updated 3 years ago
• xnl-h4ck3r / GAP-Burp-Extension
  Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist
  ☆1,253Updated 4 months ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,218Updated 2 months ago
• payloadbox / xxe-injection-payload-list
  🎯 XML External Entity (XXE) Injection Payload List
  ☆1,097Updated 4 months ago
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,500Updated 2 weeks ago
• m4ll0k / BBTz
  BBT - Bug Bounty Tools (examples💡)
  ☆1,720Updated 7 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆804Updated 2 years ago
• httpvoid / writeups
  ☆1,177Updated 2 years ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,347Updated 2 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,540Updated 3 years ago
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,191Updated last week
• devanshbatham / ParamSpider
  Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing
  ☆2,531Updated 4 months ago
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,453Updated last year
• hahwul / XSpear
  🔱 Powerfull XSS Scanning and Parameter analysis tool&gem
  ☆1,202Updated 2 years ago
• CoreyD97 / BurpCustomizer
  Because just a dark theme wasn't enough!
  ☆552Updated 2 years ago