StefanMichielse / generate_xxe_payloadsLinks
This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will eventually make it easier to maintain and add new payloads.
☆32Updated 9 years ago
Alternatives and similar repositories for generate_xxe_payloads
Users that are interested in generate_xxe_payloads are comparing it to the libraries listed below
Sorting:
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆82Updated 7 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆154Updated 4 years ago
- Burp Bounty profiles☆83Updated 3 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 5 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆75Updated 4 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆120Updated 4 years ago
- Simple "postMessage logger" Chrome extension☆98Updated 5 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆276Updated 4 years ago
- WordPress Plugin Update Confusion☆67Updated 3 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆181Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆61Updated 3 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆109Updated 3 years ago
- ☆145Updated 3 years ago
- ExtractSubdomainFromFDNS, updating☆33Updated 5 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆54Updated 3 years ago
- ☆55Updated 2 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆294Updated 5 years ago
- ☆38Updated 5 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆112Updated 6 years ago
- URL Screenshot Utility☆27Updated 2 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆156Updated 4 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆72Updated 2 months ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆89Updated 3 years ago
- ☆127Updated 3 years ago
- essential templates for kenzer [DEPRECATED]☆117Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- A Web-UI for subdomain enumeration (subfinder)☆54Updated 5 years ago