TuyaSecurity/SSRF-Auto external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TuyaSecurity/SSRF-Auto

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TuyaSecurity/SSRF-Auto)

Close

TuyaSecurity / SSRF-AutoView on GitHubMore

• External links
• Readme badge

Burp-plugin

☆17Jul 18, 2024Updated last year

Alternatives and similar repositories for SSRF-Auto

Users that are interested in SSRF-Auto are comparing it to the libraries listed below

• hy0jer / NoAuthScan

  View on GitHub
  一款支持检测web应用程序未授权访问缺陷的burp suite插件，可自定义配置检测字段以及返回包json数据分析
  ☆12Apr 22, 2024Updated last year
• hookdd / OssScan

  View on GitHub
  burp插件,Oss漏洞被动扫描
  ☆98Aug 8, 2025Updated 7 months ago
• TFour123 / findsomething_plus

  View on GitHub
  添加识别与检测异步js逻辑
  ☆23Aug 26, 2025Updated 6 months ago
• banchengkemeng / Auto-SSRF

  View on GitHub
  基于 BurpSuite 新版 MontoyaAPI 的 SSRF 漏洞自动探测插件
  ☆155Mar 2, 2025Updated last year
• gh0stNinja / ProxySwitcher

  View on GitHub
  这是一个结合 Burp Suite 扩展插件 和 ProxyPool 爬虫代理 IP 池 的集成方案，用于自动化获取、验证和管理免费代理，实现高效的 HTTP 代理切换。插件支持直接粘贴代理列表或访问 ProxyPool API URL 获取代理，支持 HTTP 和 SOC…
  ☆30Oct 30, 2025Updated 4 months ago
• wrongwe / index-of-scanner

  View on GitHub
  基于协程并发的Web敏感文件扫描器，精准探测备份文件、配置泄露及版本控制目录暴露风险，为渗透测试与安全防护提供专业级资产测绘方案。
  ☆12Mar 6, 2025Updated last year
• gh0stNinja / Cobalt-Strike-Scripts-CNA

  View on GitHub
  Cobalt Strike 插件包，超级缝合怪...
  ☆11Jul 11, 2025Updated 8 months ago
• Master-lay / geoserver-llll

  View on GitHub
  geoserver后台漏洞检测一键化工具
  ☆38Jun 29, 2024Updated last year
• Di-duo / HostAttack

  View on GitHub
  一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。
  ☆13Mar 7, 2025Updated last year
• mumumumuo / RaceCondition

  View on GitHub
  Burp条件竞争测试插件
  ☆26Aug 21, 2025Updated 6 months ago
• qncosfh / xxl_job_executor_exploit

  View on GitHub
  xxl_job_executor_默认Access_Token_不出网综合利用
  ☆40Oct 20, 2025Updated 5 months ago
• fKzhangsa / FilterJs

  View on GitHub
  Burp的JS API接口过滤插件
  ☆126Dec 27, 2023Updated 2 years ago
• qazwsx5293870 / S-XIASQL

  View on GitHub
  S-XIASQL 是一款专业的 Burp Suite SQL注入检测插件，能够自动化检测Web应用中的SQL注入漏洞。通过智能分析HTTP请求响应，快速识别潜在的SQL注入点，大幅提升渗透测试效率。
  ☆60Mar 11, 2026Updated last week
• B1anda0 / CVE-2020-10148

  View on GitHub
  SolarWinds Orion API 远程代码执行漏洞批量检测脚本
  ☆10Jan 5, 2021Updated 5 years ago
• guchangan1 / CodeVulnScan

  View on GitHub
  CodeVulnScan 是一款基于正则表达式的代码安全审计工具，专为红队成员快速定位sink设计。它能够快速扫描目标代码库，定位潜在的漏洞 Sink 点，提升代码审计效率。
  ☆65Feb 11, 2026Updated last month
• EastSword / skill-dfyx_code_security_review

  View on GitHub
  东方隐侠团队出品，代码审计skill
  ☆64Feb 25, 2026Updated 3 weeks ago
• se1zer / FastjsonScan

  View on GitHub
  FastjsonScan，支持版本识别、出网检测、AutoType检测、依赖检测，poc验证等功能
  ☆13Jun 17, 2025Updated 9 months ago
• kk12-30 / 2025hvv

  View on GitHub
  2025护网POC
  ☆46Jul 31, 2025Updated 7 months ago
• BambiZombie / bypass_uac_bof

  View on GitHub
  一个普通的BOF用来BypassUAC
  ☆22Apr 6, 2024Updated last year
• libaibaia / BucketVulTools

  View on GitHub
  Burpsuite存储桶配置不当漏洞检测插件
  ☆194Jul 16, 2025Updated 8 months ago
• cyberasset / asset-inventory

  View on GitHub
  Asset inventory of over 800 public bug bounty programs.
  ☆12Jun 12, 2023Updated 2 years ago
• HackAllSec / FuzzDict

  View on GitHub
  经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary
  ☆42Jul 10, 2024Updated last year
• khai-tran / BurpAMFDser

  View on GitHub
  ☆17Apr 8, 2015Updated 10 years ago
• NotoChen / JavaVersionChoice

  View on GitHub
  Java厂商/版本切换工具
  ☆22Aug 2, 2023Updated 2 years ago
• test502git / SScan

  View on GitHub
  一款src捡洞扫描器
  ☆25Jan 13, 2021Updated 5 years ago
• guchangan1 / SyntaxFinger

  View on GitHub
  本工具不去主动的做端口扫描，通过聚合了三大资产测绘引擎接口语法，快速获取与目标有关的所有资产列表，并进行一键指纹识别（通用系统指纹、ICP归属等），筛出高价值及脆弱资产。
  ☆31Mar 13, 2025Updated last year
• FridaZhbk / UrlRedirectScan

  View on GitHub
  ☆112Mar 6, 2023Updated 3 years ago
• d0ctorsec / LearnJavaMemshellFromZero-Recurrence

  View on GitHub
  基于W01fh4cker大佬的LearnJavaMemshellFromZero从零掌握java内存马的复现重组版本。
  ☆92Jul 7, 2025Updated 8 months ago
• Xuno1 / Emergency-response-toolset

  View on GitHub
  猫鼠信安应急响应工具包
  ☆47Jan 11, 2024Updated 2 years ago
• Niiiiko / FastjsonScan4Burp

  View on GitHub
  FastjsonScan4Burp 一款基于burp被动扫描的fastjson漏洞探测插件，可针对数据包中存在json的参数或请求体进行payload测试。旨在帮助安全人员更加便捷的发现、探测、深入利用fastjson漏洞，目前已实现fastjson探测、版本、依赖探测、出…
  ☆157Mar 13, 2025Updated last year
• KaGty1 / SSRF_Detector

  View on GitHub
  SSRF_Detector是一款基于Burpsuite MontoyaAPI的黑盒SSRF漏洞自动化检测工具，用于检测无回显&全回显SSRF漏洞，提供了多种功能供用户自定义，包括但不限于关键字配置，Payload配置以及检测字符串配置
  ☆44Apr 8, 2025Updated 11 months ago
• xz-zone / Webpack_extract

  View on GitHub
  Hengge team develops JavaScript specifically for loading Webpack for batch reading
  ☆59Updated this week
• winezer0 / PrivacyCheckGo

  View on GitHub
  Privacy Check Go
  ☆26Feb 11, 2026Updated last month
• sulab999 / JsApiScan

  View on GitHub
  一款扫描js中敏感api的burp插件
  ☆38Aug 30, 2023Updated 2 years ago
• enh123 / DirectoryFuzz

  View on GitHub
  渗透测试目录扫描字典
  ☆69Updated this week
• XF-FS / APIKit

  View on GitHub
  APIKit 是Burp Suite 的一个API接口扫描插件，该版本APIKit是对API-Security项目的APIKit1.0进行的二开，增加了扫描开关，避免直接打开burp乱扫被抓起来
  ☆92Dec 19, 2025Updated 3 months ago
• dreamncn / CustomCrypto

  View on GitHub
  Burp自定义加解密插件
  ☆58Oct 10, 2023Updated 2 years ago
• Pa55w0rd / google-hacking-assistant

  View on GitHub
  🔍 Chrome扩展，为安全研究和渗透测试提供Google/百度/Bing高级搜索语法快捷执行。一键Dorking、批量提取URL、智能过滤黑名单，大幅提升信息收集效率。 🔍 Chrome extension for security research and pen…
  ☆127Oct 16, 2025Updated 5 months ago
• oxff644 / Waf_auto_pretest

  View on GitHub
  WAF自动化质量测试工具
  ☆20Apr 13, 2022Updated 3 years ago