alebeta90 / behindflare
This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF
☆15Updated last year
Related projects ⓘ
Alternatives and complementary repositories for behindflare
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 3 years ago
- parse ffuf & map endpoints to wordlists☆19Updated 3 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …☆13Updated 7 months ago
- Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.☆56Updated 4 years ago
- Query various sources for CVE proof-of-concepts☆49Updated last year
- Burp Suite extension for extracting metadata from files☆19Updated 3 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 6 months ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated last year
- This little script for gathering chaos.projectdiscovery.io recon data in an organized way and finding the daily differences on it☆17Updated 4 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆14Updated 4 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆17Updated 5 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Clickjacking PoC Generator☆35Updated 4 years ago
- A basic proxylogon scanner☆27Updated 3 years ago
- Google Chrome Extension automates testing fundamental Web Problems via Chrome☆21Updated 3 years ago
- CVE-2020-5902☆9Updated 4 years ago
- Advanced Recon Tool☆26Updated 4 years ago
- Secrets detection based on regular expressions.☆22Updated last year
- Default plugins for Jaeles Scanner☆33Updated 4 years ago
- Return domains in CSP headers in http response☆15Updated 3 years ago
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- WebSocket Connection Smuggler☆44Updated 2 years ago
- Parallelized enumeration tool for red team engagements and bug bounty programs.☆18Updated 3 years ago
- burp extender for fuzzing☆10Updated 6 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request and response traffic using configurable rules☆15Updated last month