Sn1r / Forbidden-Buster
A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas in the system. This code is made for security enthusiasts and professionals only. Use it at your own risk.
☆176Updated 7 months ago
Alternatives and similar repositories for Forbidden-Buster:
Users that are interested in Forbidden-Buster are comparing it to the libraries listed below
- Automated Tool for Testing Header Based Blind SQL Injection☆277Updated last year
- Advanced Time-based Blind SQL Injection fuzzer for HTTP Headers☆297Updated last year
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆261Updated 2 weeks ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆142Updated last month
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆356Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆372Updated last week
- My Priv8 Nuclei Templates☆314Updated 11 months ago
- i will upload more templates here to share with the comunity.☆542Updated last year
- Fuzz 401/403/404 pages for bypasses☆305Updated 4 months ago
- Bypass WAF SQL Injection SQLMAP☆188Updated 2 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆197Updated 9 months ago
- ☆240Updated 3 years ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆272Updated last year
- Local File Inclusion discovery and exploitation tool☆300Updated 3 months ago
- XSS payloads for bypassing WAF. This repository is updating continuously.☆239Updated last year
- List of Directory Traversal/LFI Payloads Scraped from the Internet☆165Updated 2 months ago
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆524Updated 2 months ago
- Simple tool to scan a website for (DOM-based) XSS vulnerabilities and Open Redirects.☆237Updated 2 months ago
- NucleiScanner is a Powerful Automation tool for detecting Unknown Vulnerabilities in the Web Applications☆324Updated 3 weeks ago
- Unauthenticated Remote Code Execution – Bricks <= 1.9.6☆167Updated last year
- ☆196Updated 2 months ago
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆363Updated 3 weeks ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆810Updated last year
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆247Updated 8 months ago
- ☆298Updated 2 years ago
- ☆131Updated 5 months ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆370Updated 2 weeks ago
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- ☆126Updated 3 years ago