bahruzjabiyev / gudifu-fuzzer
Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
☆17Updated last year
Alternatives and similar repositories for gudifu-fuzzer:
Users that are interested in gudifu-fuzzer are comparing it to the libraries listed below
- Proof of Concepts for unsafe deserialization in Ruby☆17Updated 6 months ago
- ☆30Updated 2 weeks ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆30Updated last month
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 7 months ago
- ☆14Updated last month
- ☆62Updated 2 years ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 2 months ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆27Updated 7 years ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆45Updated last year
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆44Updated last year
- ☆16Updated 3 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆26Updated 6 months ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- ☆29Updated last month
- POC for RCE vulnerability in ParseExcel library, and ParseXLSX too, as a depending library☆16Updated 6 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆21Updated 3 years ago
- tool that generates bypasses for open redirects☆52Updated 2 years ago
- Awesome MXSS ??☆49Updated 6 months ago
- Security Advisories☆32Updated last week
- ☆14Updated 4 months ago
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆12Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 9 months ago
- ☆94Updated 3 years ago
- an Evil Java RMI Registry.☆49Updated 2 years ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆35Updated 11 months ago
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆34Updated 5 months ago
- Prototype Pollution exploits collection☆32Updated 3 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆58Updated 10 months ago