anshumanpattnaik / http-request-smuggling
HTTP Request Smuggling Detection Tool
☆491Updated last year
Alternatives and similar repositories for http-request-smuggling:
Users that are interested in http-request-smuggling are comparing it to the libraries listed below
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆503Updated 2 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- A fuzzer for detecting open redirect vulnerabilities☆731Updated 8 months ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆449Updated last year
- A tool to check a bunch of URLs that contain reflecting params.☆564Updated 7 months ago
- This a adaption of tomnomnom's kxss tool with a different output format☆454Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆63Updated 10 months ago
- ☆287Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆349Updated 2 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆961Updated 2 months ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations�☆352Updated 4 years ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆286Updated last week
- ☆518Updated last year
- Fetches javascript file from a list of URLS or subdomains.☆759Updated last year
- Automation for javascript recon in bug bounty.☆968Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆804Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆363Updated 2 weeks ago
- Accept URLs on stdin, replace all query string values with a user-supplied value☆798Updated 2 years ago
- Useful "Match and Replace" burpsuite rules☆342Updated last year
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆612Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆623Updated 4 months ago
- Heuristic Vulnerable Parameter Scanner☆583Updated last year
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆496Updated 2 weeks ago
- A fast and minimal JS endpoint extractor☆342Updated 4 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆381Updated last year
- Customisable and automated HTTP header injection☆243Updated 8 months ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆243Updated 7 months ago
- Small tool to Grab subdomains using Shodan api.☆423Updated 4 months ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆307Updated 4 months ago
- Automating XSS using Bash☆353Updated last year