allyomalley / BurpParamFlaggerLinks
A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or LFI.
☆132Updated 4 years ago
Alternatives and similar repositories for BurpParamFlagger
Users that are interested in BurpParamFlagger are comparing it to the libraries listed below
Sorting:
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆158Updated last year
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 4 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Prototype Pollution Scanner☆125Updated 4 years ago
- Detects request smuggling via HTTP/2 downgrades.☆92Updated 3 years ago
- Generates target specific word lists for Fuzzing with fuff☆111Updated 4 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- WordPress Plugin Update Confusion☆67Updated 3 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆161Updated 2 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆88Updated 5 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆214Updated 6 years ago
- ☆95Updated 3 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- ☆67Updated 2 years ago
- Horizontal Domain Discovery☆76Updated 2 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- 4xxbypass☆67Updated 4 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- Get the scope of your bugcrowd programs☆67Updated 4 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆121Updated 3 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆91Updated last year
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆60Updated 5 years ago
- Misc bounty and vulndisc things☆86Updated 4 years ago
- Urls de-duplication tool for better recon.☆142Updated 2 months ago
- Clientside vulnerability / reflected xss fuzzer☆150Updated 2 years ago