bahruzjabiyev / gudifu-fuzzerLinks
Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
☆18Updated last year
Alternatives and similar repositories for gudifu-fuzzer
Users that are interested in gudifu-fuzzer are comparing it to the libraries listed below
Sorting:
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- ☆37Updated last month
- ☆82Updated last month
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- Awesome MXSS ??☆52Updated 10 months ago
- ☆21Updated 4 months ago
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.☆27Updated 3 months ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆51Updated 3 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated last month
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- ☆63Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 months ago
- ☆88Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 2 months ago
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆93Updated 7 months ago
- Same Origin XSS challenge☆61Updated 3 years ago
- ☆94Updated 3 years ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆146Updated last year
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- A rapid HTTP downgrade smuggling scanner written in Go.☆303Updated last year
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆71Updated last month
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 11 months ago
- ☆45Updated 6 months ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆28Updated 10 months ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 6 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆51Updated last year