chenjj/CORScanner external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

chenjj/CORScanner

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/chenjj/CORScanner)

Close

chenjj / CORScannerView on GitHubMore

• External links
• Readme badge

🎯 Fast CORS misconfiguration vulnerabilities scanner

☆1,145Nov 25, 2021Updated 4 years ago

Alternatives and similar repositories for CORScanner

Users that are interested in CORScanner are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• swisskyrepo / SSRFmap

  View on GitHub
  Automatic SSRF fuzzer and exploitation tool
  ☆3,519Sep 4, 2025Updated 7 months ago
• Threezh1 / JSFinder

  View on GitHub
  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
  ☆2,921Nov 24, 2021Updated 4 years ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,031Feb 23, 2022Updated 4 years ago
• s0md3v / Corsy

  View on GitHub
  CORS Misconfiguration Scanner
  ☆1,513Sep 17, 2022Updated 3 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆978Nov 30, 2021Updated 4 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• GerbenJavado / LinkFinder

  View on GitHub
  A python script that finds endpoints in JavaScript files
  ☆4,322Apr 13, 2024Updated last year
• LangziFun / LangSrcCurise

  View on GitHub
  SRC子域名资产监控
  ☆1,298Jan 14, 2021Updated 5 years ago
• cujanovic / SSRF-Testing

  View on GitHub
  SSRF (Server Side Request Forgery) testing resources
  ☆2,486Oct 12, 2024Updated last year
• Qianlitp / crawlergo

  View on GitHub
  A powerful browser crawler for web vulnerability scanners
  ☆3,024Mar 11, 2025Updated last year
• wagiro / BurpBounty

  View on GitHub
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,794Apr 26, 2024Updated last year
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,461Jun 17, 2024Updated last year
• lc / theftfuzzer

  View on GitHub
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆318May 22, 2023Updated 2 years ago
• tarunkant / Gopherus

  View on GitHub
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,341Apr 18, 2023Updated 2 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆967Jun 16, 2024Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• shmilylty / OneForAll

  View on GitHub
  OneForAll是一款功能强大的子域收集工具
  ☆9,719Sep 12, 2025Updated 6 months ago
• timwhitez / crawlergo_x_XRAY

  View on GitHub
  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
  ☆1,184Nov 10, 2021Updated 4 years ago
• bit4woo / knife

  View on GitHub
  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
  ☆1,909Apr 3, 2026Updated last week
• bit4woo / python_sec

  View on GitHub
  python安全和代码审计相关资料收集 resource collection of python security and code review
  ☆1,352Aug 6, 2020Updated 5 years ago
• c0ny1 / jsEncrypter

  View on GitHub
  一个用于前端加密Fuzz的Burp Suite插件
  ☆1,065Mar 6, 2020Updated 6 years ago
• lijiejie / swagger-exp

  View on GitHub
  A Swagger API Exploit
  ☆1,371Jun 7, 2024Updated last year
• epinna / tplmap

  View on GitHub
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,135Apr 21, 2024Updated last year
• 0xn0ne / weblogicScanner

  View on GitHub
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆2,073Nov 24, 2023Updated 2 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,394Dec 16, 2022Updated 3 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• yassineaboukir / sublert

  View on GitHub
  Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed b…
  ☆1,029Feb 5, 2021Updated 5 years ago
• enjoiz / XXEinjector

  View on GitHub
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,733Dec 1, 2024Updated last year
• w-digital-scanner / w13scan

  View on GitHub
  Passive Security Scanner (被动式安全扫描器)
  ☆1,949Feb 8, 2023Updated 3 years ago
• FeeiCN / ESD

  View on GitHub
  Enumeration sub domains(枚举子域名)
  ☆1,069Dec 1, 2021Updated 4 years ago
• s0md3v / Arjun

  View on GitHub
  HTTP parameter discovery suite.
  ☆6,184Feb 20, 2025Updated last year
• c0ny1 / xxe-lab

  View on GitHub
  一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo
  ☆817Nov 28, 2022Updated 3 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,016May 21, 2024Updated last year
• lijiejie / BBScan

  View on GitHub
  A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
  ☆2,368Dec 31, 2024Updated last year
• Lucifer1993 / struts-scan

  View on GitHub
  Python2编写的struts2漏洞全版本检测和利用工具
  ☆1,416May 7, 2019Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• rabbitmask / WeblogicScan

  View on GitHub
  Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
  ☆2,269May 22, 2023Updated 2 years ago
• maK- / parameth

  View on GitHub
  This tool can be used to brute discover GET and POST parameters
  ☆1,395Aug 24, 2019Updated 6 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆867Jul 21, 2019Updated 6 years ago
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆841Jun 17, 2022Updated 3 years ago
• aleenzz / MYSQL_SQL_BYPASS_WIKI

  View on GitHub
  mysql注入,bypass的一些心得
  ☆1,327Jun 25, 2024Updated last year
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,958Jun 4, 2021Updated 4 years ago
• frohoff / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆8,837Dec 4, 2025Updated 4 months ago