ambionics / scalpelLinks
Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.
☆65Updated last year
Alternatives and similar repositories for scalpel
Users that are interested in scalpel are comparing it to the libraries listed below
Sorting:
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated 2 months ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- ☆89Updated last year
- oauth-labs: an intentionally vulnerable set of OAuth 2.0 labs for security training and learning☆70Updated 8 months ago
- ☆38Updated 2 months ago
- ☆39Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆98Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 months ago
- ☆22Updated 5 months ago
- CVE-2023-33733 reportlab RCE☆120Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆147Updated last year
- ☆83Updated last month
- A better way of querying certificate transparency logs☆87Updated 4 months ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆94Updated 2 months ago
- A (small) web exploit framework☆93Updated 2 weeks ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆89Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 8 months ago
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆78Updated last year
- Burp Suite's extension to scan and crawl Single Page Applications☆106Updated 2 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆104Updated 9 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- ☆167Updated 3 years ago
- GitLab CVE-2023-2825 PoC. This PoC leverages a path traversal vulnerability to retrieve the /etc/passwd file from a system running GitLab…☆141Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆72Updated 2 months ago
- Subdomains analysis and generation tool. Reveal the hidden!☆243Updated 2 months ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆77Updated last year