asmyczek / popcorn
Popcorn - the JSON fuzzer
☆22Updated 10 years ago
Alternatives and similar repositories for popcorn:
Users that are interested in popcorn are comparing it to the libraries listed below
- A Burp Extender plugin, that will deserialized java objects and encode them in XML using the Xtream library.☆25Updated 9 years ago
- ☆12Updated 9 years ago
- Immunio's XSS Fuzzer tool☆25Updated 9 years ago
- Burp and ZAP plugin that display image metadata (JPEG Exif or PNG text chunk).☆14Updated last year
- Utilities for creating Burp Suite Extensions.☆21Updated 4 months ago
- Broken web app intentionally built with pentesting obstacles☆15Updated 5 years ago
- ☆32Updated 9 years ago
- Study about HQL injection exploitation.☆51Updated 8 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆43Updated 7 years ago
- This test suite contains over 40 different test cases that have proven to work with different mobile browsers in my research or testing S…☆30Updated 5 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- REST/JSON interface to Burp Suite☆33Updated 4 years ago
- A fuzzing script for MitmProxy☆22Updated 9 years ago
- Python Package for burprestapi☆16Updated 5 years ago
- Burp Suite extension to help make Graphql request more readable☆31Updated 7 years ago
- A collection of published exploits and proof-of-concept code.☆21Updated 7 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Tainted PhantomJS☆53Updated 9 years ago
- This repository contains hit lists to use for web application content discovery.☆11Updated 7 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 2 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆15Updated 8 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆45Updated 6 years ago
- A PoC that shows that Web Vulnerabilities can indeed be interesting☆19Updated 6 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 8 years ago
- Generates Flash based CORS CSRF Proof of Concepts that can be sent directly to clients☆14Updated 11 years ago
- ☆30Updated 2 years ago
- Faraday Workspaces for Bug Bounties☆20Updated 9 years ago