allyomalley / BurpParamFlaggerLinks
A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or LFI.
☆132Updated 4 years ago
Alternatives and similar repositories for BurpParamFlagger
Users that are interested in BurpParamFlagger are comparing it to the libraries listed below
Sorting:
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 4 years ago
- Get the scope of your bugcrowd programs☆67Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆158Updated last year
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- Generates target specific word lists for Fuzzing with fuff☆111Updated 4 years ago
- Urls de-duplication tool for better recon.☆141Updated 3 weeks ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆159Updated 2 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆121Updated 3 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago
- ☆67Updated 2 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- Signatures for jaeles scanner by @j3ssie☆116Updated last year
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- Find subdomains and takeovers.☆85Updated 2 years ago
- Detects request smuggling via HTTP/2 downgrades.☆92Updated 2 years ago
- Clientside vulnerability / reflected xss fuzzer☆150Updated last year
- ☆95Updated 3 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆59Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- Extract JavaScript files from burp suite project with ease.☆90Updated 3 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Horizontal Domain Discovery☆76Updated 2 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- A reverse whois tool based on Whoxy API.☆166Updated last year
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated 2 years ago