SpiderMate / B-XSSRF
Toolkit to detect and keep track on Blind XSS, XXE & SSRF
☆295Updated 5 years ago
Alternatives and similar repositories for B-XSSRF:
Users that are interested in B-XSSRF are comparing it to the libraries listed below
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆274Updated 4 years ago
- Automated blind-xss search for Burp Suite☆283Updated 5 years ago
- SSRF testing tool☆244Updated 2 years ago
- Payloads for CRLF Injection☆224Updated 5 months ago
- Python tool to find potential SSRF parameters☆314Updated last month
- Various Payload wordlists☆235Updated 4 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆146Updated 4 years ago
- Common Web Managers Fuzz Wordlists☆173Updated last week
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆150Updated 4 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆107Updated 3 years ago
- ☆144Updated 2 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆213Updated 5 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- this contain the burp pack☆207Updated 8 years ago
- You can read the writeup on this script here☆270Updated 4 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 3 years ago
- CRLF and open redirect fuzzer☆112Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆168Updated 4 years ago
- Command line tool for testing CRLF injection on a list of domains.☆162Updated 11 months ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆256Updated 2 years ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆87Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- Turbo Intruder Scripts☆222Updated 4 years ago
- Nuclei templates written by us.☆267Updated 3 years ago
- Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vu…☆235Updated 4 years ago
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆266Updated last month
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆82Updated 7 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 4 years ago
- Trying to make automated recon for bug bounties☆253Updated 3 years ago
- qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.☆300Updated 2 years ago