andresriancho / race-condition-exploit
Tool to help with the exploitation of web application race conditions
☆181Updated 6 years ago
Alternatives and similar repositories for race-condition-exploit:
Users that are interested in race-condition-exploit are comparing it to the libraries listed below
- An automated XSS payload generator written in python.☆319Updated 8 years ago
- A Burp Plugin for Detecting Weaknesses in Content Security Policies☆164Updated last year
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆254Updated 8 months ago
- Web Application Security☆125Updated 8 months ago
- Abusing Self-XSS and Clickjacking to trigger XSS☆130Updated 7 years ago
- Turn your Burp suite into headless active web application vulnerability scanner☆154Updated 6 years ago
- Git manager for pentesters☆107Updated 8 years ago
- Pillage web accessible GIT, HG and BZR repositories☆315Updated 8 years ago
- ☆179Updated 11 years ago
- Enumerating IPs in X-Forwarded-Headers to bypass 403 restrictions☆220Updated 2 years ago
- Fast subdomains enumeration tool for penetration testers☆117Updated 6 years ago
- Project "Flashbang" - An open-source Flash-security helper☆205Updated 9 years ago
- It's bloody scantastic☆235Updated 2 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆383Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆221Updated 2 years ago
- burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…☆157Updated 6 years ago
- A collection of all the lists, scripts and techniques I use while doing web application penetration tests.☆168Updated 8 years ago
- Chrome < 62 uxss exploit (CVE-2017-5124)☆161Updated 7 years ago
- Portable and flexible web application security assessment tool.It parses Burp Suite log and performs various tests depending on the modul…☆121Updated 6 years ago
- Drag and Drop ClickJacking PoC development assistance tool.☆193Updated 4 years ago
- Probe a rendering engine for vulnerabilities and other features☆367Updated 3 years ago
- [depreciated] Terminal dashboard for bug bounty hunters that use HackerOne and Bugcrowd☆190Updated 8 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆273Updated 4 years ago
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()☆120Updated 9 years ago
- A very simple bridge for performing Flash HTTP requests with JavaScript☆79Updated 9 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆87Updated 10 years ago
- DNS Rebinding Exploitation Framework☆488Updated 3 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆258Updated 3 years ago
- The Guppy Proxy (GUI Pappy)☆143Updated 5 years ago
- Code Review Audit Script Scanner☆140Updated last year