WhiteOakSecurity / Dynamic-DTD
A python Flask app that generates dynamic DTDs for easy out-of-band data exfiltration.
☆27Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Dynamic-DTD
- ☆52Updated 6 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- Prototype Pollution Scanner☆101Updated 3 years ago
- Copy as XMLHttpRequest BurpSuite extension☆30Updated 3 years ago
- Tool for making it easy to collect dns results from the CLI☆39Updated 3 months ago
- A list of "secrets" from JWT sample code and readme files.☆51Updated 4 years ago
- Scanner for Cross-Site WebSocket Hijacking☆42Updated 4 years ago
- A Python Library designed to facilitate interaction with Synack's undocumented API endpoints☆23Updated last year
- A modular URL deduplication tool.☆18Updated last year
- A tool for check available dependency packages across npmjs, PyPI or RubyGems registry.☆28Updated 2 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆63Updated 2 years ago
- Use normal web pentest tools to hack Websockets☆18Updated 5 years ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆77Updated last year
- ☆39Updated 11 months ago
- ☆47Updated 3 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Updated 2 years ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆51Updated last year
- Collection of content discovery wordlists in one wordlist.☆37Updated 2 years ago
- Subdomain Enumeration Wordlist. 8956437 unique words. Updated.☆74Updated 4 years ago
- Striping CDN IPs from a list of IP Addresses☆74Updated 2 years ago
- ☆89Updated 3 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆111Updated last year
- It's an watcher for new scopes added to bounty-targets-data and send you alert to Slack.☆55Updated 2 years ago
- IIS shortname scanner + bruteforce☆49Updated 9 months ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 3 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Updated 3 years ago
- Information Security Information From Web☆26Updated 2 months ago