Payloads for CRLF Injection
☆227Oct 12, 2024Updated last year
Alternatives and similar repositories for CRLF-Injection-Payloads
Users that are interested in CRLF-Injection-Payloads are comparing it to the libraries listed below
Sorting:
- subdomain bruteforce list☆101Oct 12, 2024Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆217Oct 12, 2024Updated last year
- Open Redirect Payloads☆654Oct 12, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- XSS payloads for exploiting Markdown syntax☆492Oct 12, 2024Updated last year
- Virtual host wordlist☆52Jan 12, 2021Updated 5 years ago
- Command line tool for testing CRLF injection on a list of domains.☆165Apr 14, 2024Updated last year
- Automatic tool for DNS rebinding-based SSRF attacks☆304Aug 21, 2020Updated 5 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆550Jun 12, 2017Updated 8 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆279Feb 11, 2021Updated 5 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,130Dec 16, 2024Updated last year
- You can read the writeup on this script here☆273Jul 12, 2020Updated 5 years ago
- A Broken-URL Checker☆82Nov 2, 2017Updated 8 years ago
- a .js scanner, built in php. designed to scrape urls and other info☆226Aug 22, 2017Updated 8 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,773Apr 26, 2024Updated last year
- SSRF testing tool☆245Dec 8, 2022Updated 3 years ago
- A Burp extension to show the Collaborator client in a tab☆24Dec 23, 2022Updated 3 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- A script to enumerate virtual hosts on a server.☆691Dec 28, 2017Updated 8 years ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- Another plugin for CRLF vulnerability detection☆25Jan 25, 2017Updated 9 years ago
- A python script that finds endpoints in JavaScript files☆4,286Apr 13, 2024Updated last year
- DOM XSS scanner for Single Page Applications☆416Nov 15, 2025Updated 3 months ago
- ☆1,407Jan 22, 2026Updated last month
- A small tool that extracts relative URLs from a file.☆768Sep 23, 2020Updated 5 years ago
- ☆830Nov 13, 2023Updated 2 years ago
- Subdomain Takeover tool written in Go☆2,028Aug 13, 2023Updated 2 years ago
- Find AWS S3 buckets and test their permissions.☆395Mar 28, 2023Updated 2 years ago
- Repo of useful scripts☆104Jun 30, 2020Updated 5 years ago
- Exploitation for XSS☆731Aug 5, 2021Updated 4 years ago
- Burp Suite Extension to monitor new scope☆200Mar 31, 2021Updated 4 years ago
- AWS S3 Bucket/Object Finder☆25Nov 11, 2017Updated 8 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆318May 22, 2023Updated 2 years ago
- This tool can be used to brute discover GET and POST parameters☆1,393Aug 24, 2019Updated 6 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆153Dec 7, 2022Updated 3 years ago
- Fetches javascript file from a list of URLS or subdomains.☆835Jul 22, 2025Updated 7 months ago
- A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-all scenarios, work around wildcards, al…☆1,284Aug 18, 2025Updated 6 months ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,379Sep 14, 2023Updated 2 years ago