ambionics / scalpelLinks
Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
☆60Updated last year
Alternatives and similar repositories for scalpel
Users that are interested in scalpel are comparing it to the libraries listed below
Sorting:
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆90Updated 6 months ago
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- ☆18Updated 2 months ago
- ☆36Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆94Updated 11 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 11 months ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- tetctf2020_amf_writeups☆23Updated 4 years ago
- ☆35Updated last month
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆66Updated 2 years ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆87Updated last year
- oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning☆68Updated 5 months ago
- ☆88Updated last year
- Gopher Tomcat Deployer☆48Updated 6 years ago
- ☆81Updated 7 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 2 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆126Updated 3 years ago
- ☆166Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆26Updated last year
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- ☆63Updated 2 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 4 months ago
- Same Origin XSS challenge☆61Updated 3 years ago
- jws2pubkey tool☆38Updated 11 months ago
- tool that generates bypasses for open redirects☆52Updated 3 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆59Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago