carl1l/f403

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/carl1l/f403)

carl1l / f403

用于渗透测试中对40x页面进行bypass并发扫描,采用go编写

☆263

Alternatives and similar repositories for f403

Users that are interested in f403 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,053Oct 7, 2022Updated 3 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,316Jun 29, 2024Updated last year
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,473Apr 25, 2024Updated last year
y1nglamore / IDOR_detect_tool
View on GitHub
一款API水平越权漏洞检测工具
☆767Jun 27, 2023Updated 2 years ago
xz-zone / Webpackfind
View on GitHub
Webpack自动化信息收集
☆314Feb 20, 2023Updated 3 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
whwlsfb / SpringSpider
View on GitHub
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Nov 2, 2022Updated 3 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,786Nov 1, 2023Updated 2 years ago
ja9er / Gofreeproxy
View on GitHub
自用的动态代理小工具
☆561Oct 30, 2023Updated 2 years ago
sp4zcmd / WeblogicExploit-GUI
View on GitHub
Weblogic漏洞利用图形化工具支持注入内存马、一键上传webshell、命令执行
☆776Apr 20, 2022Updated 3 years ago
whwlsfb / JDumpSpider
View on GitHub
HeapDump敏感信息提取工具
☆1,647Dec 15, 2025Updated 4 months ago
smxiazi / xia_sql
View on GitHub
xia SQL (瞎注) burp 插件，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
☆1,249May 18, 2023Updated 2 years ago
raspberryhusky / lazyfinder
View on GitHub
快速遍历目标目录中所有指定后缀文件中包含的敏感信息
☆139Aug 7, 2022Updated 3 years ago
lemonlove7 / dirsearch_bypass403
View on GitHub
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
☆874Sep 30, 2025Updated 6 months ago
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,126Feb 28, 2026Updated last month
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
chaitin / xpoc
View on GitHub
为供应链漏洞扫描设计的快速应急响应工具 [快速应急] [漏洞扫描] [端口扫描] [xray2.0进行时] A fast emergency response tool designed for supply chain vulnerability scanning.
☆1,166Jul 19, 2024Updated last year
White-hua / Apt_t00ls
View on GitHub
高危漏洞利用工具
☆1,834Feb 12, 2025Updated last year
loecho-sec / ARL-Finger-ADD
View on GitHub
灯塔（最新版）指纹添加脚本！
☆600Aug 12, 2021Updated 4 years ago
shuanx / BurpAPIFinder
View on GitHub
攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
☆1,384Oct 3, 2024Updated last year
lijiejie / swagger-exp
View on GitHub
A Swagger API Exploit
☆1,372Jun 7, 2024Updated last year
Tsojan / TsojanScan
View on GitHub
An integrated BurpSuite vulnerability detection plug-in.
☆1,480Jan 29, 2026Updated 2 months ago
ttstormxx / jjjjjjjjjjjjjs
View on GitHub
爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
☆756Jul 20, 2023Updated 2 years ago
Naturehi666 / searchall
View on GitHub
强大的敏感信息搜索工具
☆981Nov 23, 2024Updated last year
wafinfo / NCTOOls
View on GitHub
一款针对用友NC综合漏洞利用工具
☆240Nov 27, 2023Updated 2 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
z2p / sweetPotato
View on GitHub
基于burpsuite的资产分析工具
☆476Apr 29, 2023Updated 2 years ago
chainreactors / gogo
View on GitHub
面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
☆2,041Feb 3, 2026Updated 2 months ago
cseroad / Webshell_Generate
View on GitHub
用于生成各类免杀webshell
☆1,295Jan 8, 2026Updated 3 months ago
Aabyss-Team / awsKeyTools
View on GitHub
AWS云平台 AccessKey 泄漏利用工具
☆395Jul 18, 2023Updated 2 years ago
LittleBear4 / Find-SomeThing
View on GitHub
红队批量脆弱点搜集工具
☆336Jun 6, 2023Updated 2 years ago
API-Security / APIKit
View on GitHub
APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
☆2,260Apr 2, 2024Updated 2 years ago
metaStor / SpringScan
View on GitHub
SpringScan 漏洞检测 Burp插件
☆607Nov 14, 2023Updated 2 years ago
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,217Jul 25, 2023Updated 2 years ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆2,452Updated this week
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
Ghr07h / Heimdallr
View on GitHub
一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
☆1,662Jan 19, 2023Updated 3 years ago
i11us0ry / winlog
View on GitHub
一款基于go的windows信息收集工具，主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
☆291Jul 18, 2022Updated 3 years ago
savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆675Jul 5, 2023Updated 2 years ago
Lotus6 / ThinkphpGUI
View on GitHub
Thinkphp(GUI)漏洞利用工具，支持各版本TP漏洞检测，命令执行，getshell。
☆1,572Jun 1, 2022Updated 3 years ago
pmiaowu / BurpFastJsonScan
View on GitHub
一款基于BurpSuite的被动式FastJson检测插件
☆1,242Oct 1, 2022Updated 3 years ago
HoAd-sc / R-dict
View on GitHub
一些自己常用的渗透字典
☆233Aug 19, 2022Updated 3 years ago
dark-kingA / superSearchPlus
View on GitHub
superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集敏感信息提取 js资源扫描目录扫描 vue组件扫描整合了目前常见的资产测绘平台专为白帽子提供快速侦测目标。
☆1,436Dec 16, 2024Updated last year