alebeta90 / behindflareLinks
This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse proxy and WAF
☆15Updated 2 years ago
Alternatives and similar repositories for behindflare
Users that are interested in behindflare are comparing it to the libraries listed below
Sorting:
- Clickjacking PoC Generator☆35Updated 4 years ago
- qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.☆30Updated 5 years ago
- All the information provided on this site is for educational purposes only.☆18Updated last year
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- parse ffuf & map endpoints to wordlists☆20Updated 4 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆16Updated last year
- Burp Suite Pro extension☆10Updated 8 years ago
- Query various sources for CVE proof-of-concepts☆51Updated 2 years ago
- A program to map out SPF and DKIM records for a large number of domains☆38Updated 10 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆27Updated last year
- Burp Suite Extension - Trigger actions and reshape HTTP request and response traffic using configurable rules☆19Updated 7 months ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Updated 5 years ago
- Database to store previously found subdomains☆65Updated last month
- asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the …☆26Updated 4 years ago
- WebSocket Connection Smuggler☆45Updated 2 years ago
- ☆47Updated 4 years ago
- Code snippets I find useful☆31Updated 7 years ago
- Magento Security Scanner☆15Updated 3 years ago
- A JavaScript components vulnerability scanner, based on RetireJS☆37Updated 5 years ago
- Burp extension to increment a parameter in each active scan request☆12Updated 4 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 3 years ago
- Mole is a framework for identifying and exploiting out-of-band application vulnerabilities.☆57Updated 4 years ago
- Default plugins for Jaeles Scanner☆34Updated 4 years ago
- Credentials Checking Framework☆54Updated 2 years ago
- Extract root domain, subdomain name, and tld from a url, using the Public Suffix List.☆8Updated 3 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆22Updated 2 years ago
- Perform operations on URLs like extracting paths, parameter names and/or values, domain name, host name (without HTTP[s]).☆29Updated 4 years ago
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆25Updated 4 years ago
- Enumerate subdomains by parsing Rapid7 FDNS dumps and CA transparency logs☆27Updated 6 years ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆15Updated 4 years ago