bahruzjabiyev / gudifu-fuzzerLinks
Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
☆19Updated last year
Alternatives and similar repositories for gudifu-fuzzer
Users that are interested in gudifu-fuzzer are comparing it to the libraries listed below
Sorting:
- ☆23Updated 6 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- AI Substitutor is an extension for Burp Suite that uses AI functionality to substitute values of HTTP request parameters and headers.☆27Updated 5 months ago
- ☆40Updated 3 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆105Updated 3 months ago
- Awesome MXSS ??☆53Updated last year
- ☆85Updated 3 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆53Updated last week
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆33Updated 7 months ago
- Security Advisories☆34Updated last week
- ☆64Updated 2 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆90Updated last year
- Same Origin XSS challenge☆64Updated 3 years ago
- Automated JavaScript Debugging Tool using CDP - Automatically sets breakpoints for specified strings/patterns in JavaScript code☆93Updated 9 months ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆56Updated last month
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- An extension to use Semgrep inside Burp Suite.☆89Updated 4 months ago
- Utility for creating ZipSlip archives☆79Updated 2 years ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆73Updated 3 months ago
- Improve automated and semi-automated active scanning in Burp Pro☆62Updated 4 months ago
- A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.☆34Updated last month
- Dependency Confusion Security Testing Tool☆51Updated 3 years ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated last year
- ☆89Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Updated last year
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆73Updated last year