☆75Feb 11, 2024Updated 2 years ago
Alternatives and similar repositories for h2csmuggler
Users that are interested in h2csmuggler are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆785May 10, 2022Updated 3 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆408Dec 24, 2022Updated 3 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆959Dec 31, 2021Updated 4 years ago
- websocket-connection-smuggler☆66Jan 22, 2020Updated 6 years ago
- ☆95Sep 18, 2021Updated 4 years ago
- ☆563Mar 27, 2025Updated 11 months ago
- CircleCI log and security configuration automations☆22Sep 20, 2020Updated 5 years ago
- Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pag…☆529Apr 23, 2025Updated 11 months ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆55Jun 13, 2023Updated 2 years ago
- ☆18Apr 7, 2022Updated 3 years ago
- A wrapper around jq, to help you parse jq output!☆30Aug 23, 2020Updated 5 years ago
- Extract JavaScript files from burp suite project with ease.☆97Feb 19, 2022Updated 4 years ago
- HTTP Request Smuggling Detection Tool☆536Dec 21, 2023Updated 2 years ago
- Contextual Content Discovery Tool☆3,121Apr 29, 2024Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Jun 17, 2023Updated 2 years ago
- My Custom made Nuceli-Templates☆22Aug 5, 2025Updated 7 months ago
- Extract relative urls from a heap snapshot☆87May 30, 2021Updated 4 years ago
- An HTTP request smuggling scanner designed to work at scale☆25Oct 2, 2022Updated 3 years ago
- A Burp extension to Fuzz URLs for HTTP parser inconsistencies☆12Jan 9, 2024Updated 2 years ago
- ☆38Aug 27, 2022Updated 3 years ago
- Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3☆2,063Jan 2, 2024Updated 2 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆93Jul 9, 2025Updated 8 months ago
- Find unicode codepoints to use in normalisation and transformation attacks.☆11Mar 15, 2021Updated 5 years ago
- ☆148Dec 23, 2022Updated 3 years ago
- List HackerOne private program assets☆154Jun 24, 2021Updated 4 years ago
- Rust-based high performance domain permutation generator.☆299Dec 2, 2023Updated 2 years ago
- Collection of quirky behaviours of code and the CTF challenges that I made around them.☆27Jan 27, 2021Updated 5 years ago
- Tool to check for dependency confusion vulnerabilities in multiple package management systems☆779Aug 19, 2024Updated last year
- Obtain GraphQL API schema even if the introspection is disabled☆1,407Dec 5, 2025Updated 3 months ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Feb 21, 2017Updated 9 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆93Nov 21, 2021Updated 4 years ago
- Prototype Pollution Scanner☆139Apr 11, 2021Updated 4 years ago
- Hidden parameters discovery suite☆2,033Sep 8, 2024Updated last year
- Turbo Intruder Scripts☆229Jun 11, 2020Updated 5 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆203Aug 5, 2024Updated last year
- Let's check if your target is vulnerable for client side prototype pollution.☆65Jan 9, 2024Updated 2 years ago
- A tool to inspect and attack version 1 GUIDs☆239Oct 13, 2022Updated 3 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆267Feb 5, 2026Updated last month