alebeta90 / behindflareLinks
This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF
☆14Updated 2 years ago
Alternatives and similar repositories for behindflare
Users that are interested in behindflare are comparing it to the libraries listed below
Sorting:
- A program to map out SPF and DKIM records for a large number of domains☆39Updated 10 years ago
- Clickjacking PoC Generator☆35Updated 5 years ago
- This tool is useful to find a particular string in a list of URLs using tesseract's OCR (Optical Character Recognition) capabilities☆32Updated 4 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated 3 years ago
- Default plugins for Jaeles Scanner☆35Updated 5 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆16Updated 2 months ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30Updated 5 years ago
- Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.☆58Updated 5 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Updated 5 years ago
- fast, zero config web endpoint change monitor☆43Updated 5 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆77Updated 5 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆25Updated 6 years ago
- UUID issues for Burp Suite☆53Updated 3 years ago
- Data exfiltration utility for testing detection capabilities☆57Updated 4 years ago
- Use regular expressions to get sensitive information from a given repository (GitHub, pip or npm).☆37Updated 6 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated last year
- Database to store previously found subdomains☆66Updated 4 months ago
- parse ffuf & map endpoints to wordlists☆21Updated 4 years ago
- XXE Injection Payloads☆28Updated 6 years ago
- Given a list of domains, you resolve them and get the IP addresses.☆48Updated 3 years ago
- Unique wordlist generator of unique wordlists.☆41Updated 2 years ago
- Router socks. One port socks for all the others.☆69Updated last year
- Simple python script to check against hypothetical JWT vulnerability.☆51Updated 5 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Updated 6 years ago
- An Extended, Modulair, Host Discovery Framework☆42Updated 7 years ago
- Check arbitrary file download vulnerability in the WordPress☆22Updated 5 years ago
- All the information provided on this site is for educational purposes only.☆18Updated last year
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆40Updated 4 years ago
- Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in…☆29Updated 5 months ago
- A basic proxylogon scanner☆27Updated 4 years ago