chenjj / CORScanner
π― Fast CORS misconfiguration vulnerabilities scanner
β1,064Updated 3 years ago
Alternatives and similar repositories for CORScanner:
Users that are interested in CORScanner are comparing it to the libraries listed below
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the acβ¦β1,715Updated 11 months ago
- latest version of scanners for IIS short filename (8.3) disclosure vulnerabilityβ1,499Updated last year
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.β1,610Updated 3 months ago
- CSRF Scannerβ561Updated 9 months ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appliβ¦β1,005Updated last week
- SSRF (Server Side Request Forgery) testing resourcesβ2,394Updated 5 months ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed bβ¦β1,003Updated 4 years ago
- Automated HTTP Request Repeating With Burp Suiteβ869Updated 3 years ago
- Burp plugin able to find reflected XSS on page in real-time while browsing on siteβ1,149Updated 4 years ago
- Burp Extension for a passive scanning JS files for endpoint links.β772Updated last year
- A tool for embedding XXE/XML exploits into different filetypesβ1,072Updated 3 months ago
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.β1,580Updated last week
- β978Updated 2 months ago
- Quick SQLMap Tamper Suggesterβ1,364Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ860Updated 3 years ago
- Open Redirect Payloadsβ606Updated 5 months ago
- Proof-of-Concept exploits for CVEs found by the team at Rhino Security Labsβ836Updated this week
- Tool to help exploit XXE vulnerabilitiesβ555Updated 2 years ago
- Finds unknown classes of injection vulnerabilitiesβ656Updated this week
- HackerOne "in scope" domainsβ439Updated this week
- Fetches javascript file from a list of URLS or subdomains.β759Updated last year
- HTTP file upload scanner for Burp Proxyβ490Updated last year
- A Powerful Subdomain Takeover Toolβ942Updated last year
- MassDNS wrapper written in go to enumerate valid subdomains using active bruteforce as well as resolve subdomains with wildcard filteringβ¦β1,400Updated this week
- A cheatsheet for exploiting server-side SVG processors.β724Updated 4 years ago
- Advanced Burp Suite Logging Extensionβ650Updated 10 months ago
- Automatic SSRF fuzzer and exploitation toolβ3,126Updated last month
- Quickly Search Large DNS Datasetsβ582Updated 4 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.β1,992Updated 2 weeks ago
- Simple websites vulnerable to Server Side Template Injections(SSTI)β389Updated 2 years ago