bsysop / blind-ssrf-chains
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
☆16Updated 4 years ago
Alternatives and similar repositories for blind-ssrf-chains:
Users that are interested in blind-ssrf-chains are comparing it to the libraries listed below
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- Enhanced 403 bypass header☆21Updated 2 years ago
- A solid recon tool I use personally.☆30Updated last year
- ☆20Updated last year
- ☆12Updated 3 years ago
- Custom nuclei templates for bug hunting.....☆25Updated 9 months ago
- IIS shortname scanner + bruteforce☆51Updated last year
- A Burp Extension that makes it easier to view all script code on a Response.☆14Updated last year
- Automated blind-xss search for Burp Suite☆23Updated 2 years ago
- A simple utility to generate domain names with all possible TLDs☆23Updated 2 years ago
- Supertruder but better☆32Updated 2 years ago
- Resolvers updated daily for reconftw☆48Updated 2 years ago
- ☆10Updated 2 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year
- ☆28Updated 5 months ago
- vīlicus is a bug bounty api dashboard☆40Updated last year
- A very simple AEM detector written in rust.🦀☆19Updated last year
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated last year
- Alternative to XSS Hunter for blind XSS.☆50Updated 2 years ago
- Wayfiles is a tool designed to search for juicy files and URLs within a folder/file with results of tools like gau, waymore, waybackurls,…☆15Updated last year
- All The Notes And Tips I FOund In Github And Twitter I Put Them Here☆34Updated 4 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- XSS Finder Via SSTI☆54Updated last year
- In this repo, I have created a subdomain enumeration function that grab subdomains in deep.☆22Updated last year
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Authorization-Nuclei-Templates☆38Updated 5 months ago
- Find CVEs that don't have a Detectify modules.☆21Updated last year
- ☆27Updated last year
- Tool to fuzz for interesting vhost.☆22Updated 2 months ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆21Updated 4 years ago