Fuzzing for LFI using Burpsuite
☆69Oct 4, 2016Updated 9 years ago
Alternatives and similar repositories for Burp-LFI-tests
Users that are interested in Burp-LFI-tests are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Burpsuite extension written in Python to perform basic validation fuzzing☆11Oct 7, 2022Updated 3 years ago
- Burp Suite extension to help make Graphql request more readable☆32Dec 7, 2017Updated 8 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Mar 1, 2023Updated 3 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆48Feb 27, 2019Updated 7 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆266Nov 18, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆160Jul 10, 2025Updated 11 months ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 6 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆65Apr 17, 2020Updated 6 years ago
- A python script that filters, checks the validity, generates clickable link(s) of subdomain(s), and reports their status☆89Oct 29, 2020Updated 5 years ago
- Subdomains-enumeration, subdomain-takeover monitoring api and S3 bucket scanner.☆39Nov 21, 2025Updated 7 months ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆101Jul 29, 2019Updated 6 years ago
- A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials☆10Jun 30, 2021Updated 5 years ago
- A tool to bruteforce nameservers when working with subdomain delegations to AWS.☆58Aug 22, 2019Updated 6 years ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆14Feb 26, 2021Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A fast http and https prober, to check which URLs are alive☆68Aug 5, 2019Updated 6 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆63Dec 4, 2018Updated 7 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆277Feb 11, 2021Updated 5 years ago
- Burp Suite extension to easily export sub domains☆45Nov 29, 2019Updated 6 years ago
- A tool that turns the authoritative nameservers of DNS providers to resolvers and resolves the target domain list. Please think of this a…☆25Sep 19, 2019Updated 6 years ago
- A simple SSRF-testing sheriff written in Go☆337Oct 31, 2024Updated last year
- ☆16May 3, 2021Updated 5 years ago
- Repo of useful scripts☆103Jun 30, 2020Updated 6 years ago
- Proof of concept code for client-side vulnerabilities☆17Mar 14, 2019Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- this contain the burp pack☆209Jan 25, 2017Updated 9 years ago
- BurpSuite extension to inject custom cross-site scripting payloads on every form/request submitted to detect blind XSS vulnerabilities☆124May 12, 2026Updated last month
- Burp Suite Extension to monitor new scope☆201Mar 31, 2021Updated 5 years ago
- Ptcoresec jeopardy style scoreboard☆23Jul 17, 2012Updated 13 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆61Oct 8, 2017Updated 8 years ago
- Revisiting Helpviewer.app to hack Parallels for Mac☆19Sep 14, 2019Updated 6 years ago
- Simple python script to check against hypothetical JWT vulnerability.☆51Nov 29, 2020Updated 5 years ago
- vulnerable single sign on☆151Aug 1, 2024Updated last year
- You can read the writeup on this script here☆192May 9, 2026Updated last month
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Burp Suite extension to passively scan for applications revealing server error messages☆66Dec 15, 2023Updated 2 years ago
- Small script to check a list of domains against open redirect vulnerability☆30Jan 22, 2022Updated 4 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆106Feb 11, 2019Updated 7 years ago
- Ease-of-use extension for Web Application penetration testing☆18Jun 20, 2017Updated 9 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆89May 6, 2023Updated 3 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆229Aug 22, 2017Updated 8 years ago
- Keyhack - Golang API token/webhook validator☆16Mar 20, 2025Updated last year