chenjj / Awesome-HTTPRequestSmuggling
A curated list of awesome blogs and tools about HTTP request smuggling attacks. Feel free to contribute! š»
ā124Updated 2 years ago
Alternatives and similar repositories for Awesome-HTTPRequestSmuggling:
Users that are interested in Awesome-HTTPRequestSmuggling are comparing it to the libraries listed below
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.ā163Updated 4 years ago
- Burpsuite plugin for Interact.shā217Updated 9 months ago
- WordPress Plugin Update Confusionā66Updated 3 years ago
- Hidden parameters discovery suiteā223Updated 2 years ago
- All known and unknown public POC's for wordpress themes and pluginsā78Updated 3 years ago
- CRLF and open redirect fuzzerā112Updated 3 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.ā107Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or Lā¦ā131Updated 4 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...ā146Updated 4 years ago
- Webapp to search tips on Twitter through #bugbountytipsā71Updated 2 years ago
- ā144Updated 2 years ago
- Unofficial documentation for the great tool Param Minerā178Updated 2 years ago
- Detects request smuggling via HTTP/2 downgrades.ā92Updated 2 years ago
- š An ultimate collection wordlists of the best-known CMSā90Updated 9 months ago
- bug bounty disclosed reportsā112Updated last month
- Enumerate Subdomains Through Google Dorksā123Updated last week
- Wordlist to bruteforce for LFIā123Updated 5 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuiteā213Updated 5 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRFā295Updated 5 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.ā76Updated 4 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.ā180Updated 3 years ago
- Prototype Pollution Scannerā113Updated 3 years ago
- ā287Updated 2 years ago
- Just some public notes that can be useful and i want let the world knows.ā86Updated 4 years ago
- Detects the algorithm of input JWT Token and provide options to generate the new JWT token based on the user selected algorithm.ā99Updated last year
- Build your own reconnaissance system with Osmedeus Next Generationā184Updated last month
- Authenticated SSRF in Grafanaā79Updated 9 months ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file pathā103Updated 4 years ago
- Signatures for jaeles scanner by @j3ssieā116Updated 11 months ago
- This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a pā¦ā105Updated last year