bahruzjabiyev / gudifu-fuzzerLinks
Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
☆17Updated last year
Alternatives and similar repositories for gudifu-fuzzer
Users that are interested in gudifu-fuzzer are comparing it to the libraries listed below
Sorting:
- ☆19Updated 3 months ago
- ☆36Updated this week
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 10 months ago
- Proof of Concepts for unsafe deserialization in Ruby☆16Updated 8 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆14Updated 3 weeks ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 5 months ago
- tool that generates bypasses for open redirects☆52Updated 3 years ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- Security Advisories☆32Updated 2 months ago
- ☆63Updated 2 years ago
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆55Updated 2 weeks ago
- ☆14Updated 3 weeks ago
- ☆37Updated last year
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter names☆37Updated last year
- ☆16Updated 3 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆26Updated 8 months ago
- An extension to use Semgrep inside Burp Suite.☆89Updated last month
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- Awesome MXSS ??☆52Updated 8 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated last year
- an Evil Java RMI Registry.☆50Updated 2 years ago
- A tool which allows HackerOne researchers to download their reports into a local, indexed, and searchable repository☆19Updated 2 years ago
- Prototype Pollution exploits collection☆34Updated 3 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- Utility for creating ZipSlip archives☆73Updated 2 years ago
- ☆21Updated last month
- A burp-suite plugin that extract all parameter names from in-scope requests☆29Updated 3 years ago