Zigrin-Security / CakeFuzzer
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.
☆99Updated last year
Alternatives and similar repositories for CakeFuzzer:
Users that are interested in CakeFuzzer are comparing it to the libraries listed below
- ☆52Updated this week
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆85Updated 11 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆63Updated 10 months ago
- My talks...☆23Updated 3 months ago
- Unicode Security Toolkit☆32Updated 3 months ago
- First iteration of ML based Feedback WAF☆58Updated 10 months ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z, jar, war, apk and ipa …☆91Updated 9 months ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆94Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆102Updated 3 weeks ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆157Updated 2 months ago
- ☆115Updated last year
- REST-Attacker is designed as a proof-of-concept for the feasibility of testing generic real-world REST implementations. Its goal is to pr…☆78Updated 2 years ago
- Additional active scan checks for BURP☆26Updated 3 months ago
- Build OpenApi specs for your APIs from Burp's traffic using Levo.ai. Also detect the PII in your APIs.☆26Updated 6 months ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- Make better use of the embedded browser that comes by default with Burp☆41Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated 10 months ago
- Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters☆23Updated last year
- The perfect butler for pentesters, bug-bounty hunters and security researchers☆88Updated 11 months ago
- Proviesec Fuzz Scanner - dir/path web scanner☆100Updated last month
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆76Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆251Updated 8 months ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆25Updated 2 years ago
- Vulnerable Code Snippets☆45Updated last year
- ☆27Updated last year
- A blazing-fast, thread-safe, straightforward and zero memory allocations tool to swiftly generate alternative IP(v4) address representati…☆85Updated last year
- ☆58Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆62Updated 4 months ago