anshumanpattnaik / http-request-smugglingLinks
HTTP Request Smuggling Detection Tool
☆535Updated 2 years ago
Alternatives and similar repositories for http-request-smuggling
Users that are interested in http-request-smuggling are comparing it to the libraries listed below
Sorting:
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆518Updated 3 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆361Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆502Updated 3 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆392Updated this week
- A fuzzer for detecting open redirect vulnerabilities☆781Updated last year
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆86Updated last year
- ☆299Updated 3 years ago
- Nuclei templates written by geeknik. Claude is my co-pilot. 🤖☆290Updated 5 months ago
- Useful "Match and Replace" burpsuite rules☆362Updated 2 years ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆256Updated last year
- A tool to check a bunch of URLs that contain reflecting params.☆600Updated last year
- ☆523Updated 2 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆393Updated 5 years ago
- A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀☆653Updated 5 months ago
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆225Updated last year
- This repository contains wordlists for each versions of common web applications and content management systems (CMS). Each version contai…☆534Updated last year
- A fast and minimal JS endpoint extractor☆387Updated last year
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆373Updated 2 years ago
- This a adaption of tomnomnom's kxss tool with a different output format☆515Updated 2 years ago
- Full Nuclei automation script with logic explanation.☆246Updated 3 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,036Updated 5 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆381Updated 2 years ago
- ☆544Updated last year
- A Burp Suite Extension to extract interesting strings (key, secret, token, or etc.) from a webpage.☆309Updated last year
- Security tool (now AI powered 🤖) to find potential vulnerable Server Side Request Forgery (SSRF) parameters.☆351Updated this week
- The Repository contains various payloads, tools, tips and tricks from various hackers around the world. Please take a quick look down her…☆239Updated 4 months ago
- HackerOne "in scope" domains☆498Updated this week
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆327Updated 6 months ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆934Updated 2 years ago