chenjj / CORScanner
π― Fast CORS misconfiguration vulnerabilities scanner
β1,061Updated 3 years ago
Alternatives and similar repositories for CORScanner:
Users that are interested in CORScanner are comparing it to the libraries listed below
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac�β¦β1,708Updated 9 months ago
- SSRF (Server Side Request Forgery) testing resourcesβ2,385Updated 4 months ago
- Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.β1,561Updated this week
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.β1,592Updated 2 months ago
- Burp Extension for a passive scanning JS files for endpoint links.β764Updated 10 months ago
- Sublert is a security and reconnaissance tool which leverages certificate transparency to automatically monitor new subdomains deployed bβ¦β997Updated 4 years ago
- CSRF Scannerβ556Updated 7 months ago
- Automated HTTP Request Repeating With Burp Suiteβ864Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)β580Updated last year
- β972Updated last month
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appliβ¦β987Updated last month
- A tool for embedding XXE/XML exploits into different filetypesβ1,067Updated 2 months ago
- A Powerful Subdomain Takeover Toolβ939Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ846Updated 3 years ago
- Burp plugin able to find reflected XSS on page in real-time while browsing on siteβ1,140Updated 4 years ago
- A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.β826Updated 3 weeks ago
- A cheatsheet for exploiting server-side SVG processors.β713Updated 4 years ago
- Quick SQLMap Tamper Suggesterβ1,362Updated 2 years ago
- ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.β1,979Updated 2 months ago
- Advanced Burp Suite Logging Extensionβ638Updated 8 months ago
- Blind WAF identification toolβ646Updated 7 months ago
- HTTP file upload scanner for Burp Proxyβ486Updated last year
- Open Redirect Payloadsβ599Updated 4 months ago
- HackerOne "in scope" domainsβ426Updated this week
- latest version of scanners for IIS short filename (8.3) disclosure vulnerabilityβ1,489Updated last year
- DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelβ¦β948Updated last month
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.β807Updated 7 years ago
- Automatic SSRF fuzzer and exploitation toolβ3,084Updated 8 months ago
- List of XSS Vectors/Payloadsβ1,214Updated last month
- Nuclei plugin for BurpSuiteβ1,215Updated 5 months ago