cosad3s / salsa
SALSA πβ‘ - SALesforce Scanner for Aura (and beyond). Enumeration of vulnerabilities and misconfigurations against Salesforce endpoint.
β20Updated 3 weeks ago
Alternatives and similar repositories for salsa:
Users that are interested in salsa are comparing it to the libraries listed below
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.β39Updated last year
- IIS shortname scanner + bruteforceβ51Updated last year
- A simple plugin to export JS files from one or multiple targetsβ40Updated last year
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HEβ52Updated 3 months ago
- β59Updated last year
- Resolvers updated daily for reconftwβ47Updated 2 years ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-goβ31Updated 11 months ago
- A really fast http prober.β39Updated last year
- JIRA"YA is a vulnerability analyzer for JIRA instances. It runs active scans to identify vulnerabilities by interacting with the host andβ¦β33Updated 5 months ago
- β53Updated 9 months ago
- A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-iconβ27Updated 2 months ago
- Chrome extension for automating CSPT discoveryβ55Updated 4 months ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)β50Updated last year
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response maβ¦β79Updated last year
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.β53Updated last year
- Create your own recon & vulnerability scanner with Trickest and GitHubβ49Updated last year
- This is a Burp Suite extension that allows users to easily add web addresses to the Burp Suite scope.β96Updated last month
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports bβ¦β33Updated 3 months ago
- A simple utility to perform reverse WHOIS lookups using whoisxml APIβ39Updated 2 years ago
- A set of open-source community scriptsβ60Updated 4 months ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environmentβ43Updated 8 months ago
- Mine URLs from Browser's Heap Snapshot for fun and profitβ63Updated last year
- vΔ«licus is a bug bounty api dashboardβ40Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerabilityβ16Updated 4 years ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains aβ¦β48Updated last month
- Enumerate old versions of robots.txt paths using Wayback Machine for content discoveryβ44Updated last year
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developerβ¦β18Updated last year
- Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the dropletβ56Updated 3 months ago