carl1l/f403

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/carl1l/f403)

carl1l / f403

用于渗透测试中对40x页面进行bypass并发扫描,采用go编写

☆262

Alternatives and similar repositories for f403

Users that are interested in f403 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,050Oct 7, 2022Updated 3 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,313Jun 29, 2024Updated last year
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,470Apr 25, 2024Updated last year
y1nglamore / IDOR_detect_tool
View on GitHub
一款API水平越权漏洞检测工具
☆766Jun 27, 2023Updated 2 years ago
xz-zone / Webpackfind
View on GitHub
Webpack自动化信息收集
☆314Feb 20, 2023Updated 3 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
whwlsfb / SpringSpider
View on GitHub
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Nov 2, 2022Updated 3 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,777Nov 1, 2023Updated 2 years ago
ja9er / Gofreeproxy
View on GitHub
自用的动态代理小工具
☆561Oct 30, 2023Updated 2 years ago
sp4zcmd / WeblogicExploit-GUI
View on GitHub
Weblogic漏洞利用图形化工具支持注入内存马、一键上传webshell、命令执行
☆775Apr 20, 2022Updated 3 years ago
whwlsfb / JDumpSpider
View on GitHub
HeapDump敏感信息提取工具
☆1,638Dec 15, 2025Updated 3 months ago
smxiazi / xia_sql
View on GitHub
xia SQL (瞎注) burp 插件，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
☆1,238May 18, 2023Updated 2 years ago
raspberryhusky / lazyfinder
View on GitHub
快速遍历目标目录中所有指定后缀文件中包含的敏感信息
☆138Aug 7, 2022Updated 3 years ago
lemonlove7 / dirsearch_bypass403
View on GitHub
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
☆864Sep 30, 2025Updated 5 months ago
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,110Feb 28, 2026Updated 3 weeks ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
chaitin / xpoc
View on GitHub
为供应链漏洞扫描设计的快速应急响应工具 [快速应急] [漏洞扫描] [端口扫描] [xray2.0进行时] A fast emergency response tool designed for supply chain vulnerability scanning.
☆1,163Jul 19, 2024Updated last year
White-hua / Apt_t00ls
View on GitHub
高危漏洞利用工具
☆1,830Feb 12, 2025Updated last year
loecho-sec / ARL-Finger-ADD
View on GitHub
灯塔（最新版）指纹添加脚本！
☆599Aug 12, 2021Updated 4 years ago
shuanx / BurpAPIFinder
View on GitHub
攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
☆1,382Oct 3, 2024Updated last year
lijiejie / swagger-exp
View on GitHub
A Swagger API Exploit
☆1,369Jun 7, 2024Updated last year
Tsojan / TsojanScan
View on GitHub
An integrated BurpSuite vulnerability detection plug-in.
☆1,463Jan 29, 2026Updated last month
ttstormxx / jjjjjjjjjjjjjs
View on GitHub
爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
☆755Jul 20, 2023Updated 2 years ago
Naturehi666 / searchall
View on GitHub
强大的敏感信息搜索工具
☆976Nov 23, 2024Updated last year
wafinfo / NCTOOls
View on GitHub
一款针对用友NC综合漏洞利用工具
☆240Nov 27, 2023Updated 2 years ago
NordVPN Threat Protection Pro™ • Ad
Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
z2p / sweetPotato
View on GitHub
基于burpsuite的资产分析工具
☆475Apr 29, 2023Updated 2 years ago
chainreactors / gogo
View on GitHub
面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
☆2,028Feb 3, 2026Updated last month
cseroad / Webshell_Generate
View on GitHub
用于生成各类免杀webshell
☆1,290Jan 8, 2026Updated 2 months ago
Aabyss-Team / awsKeyTools
View on GitHub
AWS云平台 AccessKey 泄漏利用工具
☆394Jul 18, 2023Updated 2 years ago
LittleBear4 / Find-SomeThing
View on GitHub
红队批量脆弱点搜集工具
☆336Jun 6, 2023Updated 2 years ago
API-Security / APIKit
View on GitHub
APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
☆2,247Apr 2, 2024Updated last year
metaStor / SpringScan
View on GitHub
SpringScan 漏洞检测 Burp插件
☆606Nov 14, 2023Updated 2 years ago
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,203Jul 25, 2023Updated 2 years ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆2,396Apr 10, 2024Updated last year
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
Ghr07h / Heimdallr
View on GitHub
一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
☆1,656Jan 19, 2023Updated 3 years ago
i11us0ry / winlog
View on GitHub
一款基于go的windows信息收集工具，主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
☆290Jul 18, 2022Updated 3 years ago
savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆674Jul 5, 2023Updated 2 years ago
Lotus6 / ThinkphpGUI
View on GitHub
Thinkphp(GUI)漏洞利用工具，支持各版本TP漏洞检测，命令执行，getshell。
☆1,564Jun 1, 2022Updated 3 years ago
pmiaowu / BurpFastJsonScan
View on GitHub
一款基于BurpSuite的被动式FastJson检测插件
☆1,238Oct 1, 2022Updated 3 years ago
HoAd-sc / R-dict
View on GitHub
一些自己常用的渗透字典
☆230Aug 19, 2022Updated 3 years ago
f0ng / autoDecoder
View on GitHub
Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
☆1,341Dec 14, 2025Updated 3 months ago