Alternatives and similar repositories for HTTP-Smuggling-Lab

Users that are interested in HTTP-Smuggling-Lab are comparing it to the libraries listed below

• httpvoid / CVE-Reverse
  ☆281Updated 3 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆599Updated 4 years ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆292Updated 4 years ago
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆575Updated 5 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆181Updated 5 years ago
• kacperszurek / exploits
  ☆264Updated 6 years ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆253Updated 2 years ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆246Updated 4 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆331Updated last year
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆259Updated 3 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆405Updated 3 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆151Updated last year
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆363Updated 9 months ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆170Updated last year
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆267Updated 4 months ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆629Updated last year
• Bo0oM / WAF-bypass-Cheat-Sheet
  Another way to bypass WAF Cheat Sheet (draft)
  ☆424Updated 6 years ago
• ONsec-Lab / scripts
  Utils
  ☆267Updated 9 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆276Updated 4 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆141Updated 6 years ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆433Updated 2 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆96Updated 5 years ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆154Updated 2 years ago
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆141Updated 4 years ago
• kozmic / laravel-poc-CVE-2018-15133
  PoC for CVE-2018-15133 (Laravel unserialize vulnerability)
  ☆252Updated last year
• kapytein / jsonp
  jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.
  ☆152Updated 4 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆198Updated 4 years ago
• securitum / research
  research
  ☆151Updated last year
• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago