Th0h0 / autossrfLinks
Smart context-based SSRF vulnerability scanner.
☆354Updated 3 years ago
Alternatives and similar repositories for autossrf
Users that are interested in autossrf are comparing it to the libraries listed below
Sorting:
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated 2 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆366Updated 2 years ago
- ☆247Updated 4 years ago
- Useful "Match and Replace" burpsuite rules☆349Updated last year
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆224Updated 9 months ago
- Never forget where you inject.☆259Updated 2 weeks ago
- i will upload more templates here to share with the comunity.☆551Updated last year
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆290Updated last year
- A subdomain fuzzing tool☆167Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆396Updated this week
- Local File Inclusion discovery and exploitation tool☆319Updated 7 months ago
- Fast and customizable vulnerability scanner For JIRA written in Python☆321Updated 7 months ago
- ☆394Updated last month
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆374Updated this week
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆274Updated 2 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆71Updated last year
- Full Nuclei automation script with logic explanation.☆246Updated 3 years ago
- ☆301Updated 2 years ago
- Automated Tool for Testing Header Based Blind SQL Injection☆284Updated 2 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆483Updated 3 years ago
- XSS payloads for bypassing WAF. This repository is updating continuously.☆246Updated last year
- A collection oneliner scripts for bug bounty☆180Updated last year
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆280Updated last year
- HTTP Request Smuggling Detection Tool☆517Updated last year
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆278Updated last year
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆250Updated 11 months ago
- List of reporting templates I have used since I started doing BBH.☆310Updated 10 months ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆214Updated last year
- ☆531Updated last year