Payloads for CRLF Injection
☆227Oct 12, 2024Updated last year
Alternatives and similar repositories for CRLF-Injection-Payloads
Users that are interested in CRLF-Injection-Payloads are comparing it to the libraries listed below
Sorting:
- subdomain bruteforce list☆101Oct 12, 2024Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆217Oct 12, 2024Updated last year
- Open Redirect Payloads☆655Oct 12, 2024Updated last year
- SSRF (Server Side Request Forgery) testing resources☆2,483Oct 12, 2024Updated last year
- XSS payloads for exploiting Markdown syntax☆492Oct 12, 2024Updated last year
- Virtual host wordlist☆52Jan 12, 2021Updated 5 years ago
- Command line tool for testing CRLF injection on a list of domains.☆163Apr 14, 2024Updated last year
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆549Jun 12, 2017Updated 8 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,135Dec 16, 2024Updated last year
- A small tool that extracts relative URLs from a file.☆768Sep 23, 2020Updated 5 years ago
- SSRF testing tool☆246Dec 8, 2022Updated 3 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- a .js scanner, built in php. designed to scrape urls and other info☆228Aug 22, 2017Updated 8 years ago
- A script to enumerate virtual hosts on a server.☆690Dec 28, 2017Updated 8 years ago
- You can read the writeup on this script here☆274Jul 12, 2020Updated 5 years ago
- TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.☆318May 22, 2023Updated 2 years ago
- Repo of useful scripts☆104Jun 30, 2020Updated 5 years ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆279Feb 11, 2021Updated 5 years ago
- Multi Tool Subdomain Enumeration☆723Apr 11, 2021Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,787Apr 26, 2024Updated last year
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- ☆834Nov 13, 2023Updated 2 years ago
- Fetches javascript file from a list of URLS or subdomains.☆838Jul 22, 2025Updated 7 months ago
- A Broken-URL Checker☆82Nov 2, 2017Updated 8 years ago
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Apr 25, 2025Updated 10 months ago
- Tool for checking reflecting Parameters in a URL.☆10Aug 31, 2020Updated 5 years ago
- A python script that finds endpoints in JavaScript files☆4,300Apr 13, 2024Updated last year
- Find AWS S3 buckets and test their permissions.☆398Mar 28, 2023Updated 2 years ago
- DOM XSS scanner for Single Page Applications☆414Nov 15, 2025Updated 4 months ago
- ☆25May 30, 2017Updated 8 years ago
- This Burp extension helps you to find usages of postMessage and recvMessage☆14Feb 20, 2020Updated 6 years ago
- DNS Takeover tool written in Go☆2,033Updated this week
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆153Dec 7, 2022Updated 3 years ago
- ☆1,413Jan 22, 2026Updated last month
- Exploitation for XSS☆729Aug 5, 2021Updated 4 years ago
- Retrive the status codes from a list of URLs☆33May 18, 2020Updated 5 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆6,399Sep 14, 2023Updated 2 years ago
- Another plugin for CRLF vulnerability detection☆25Jan 25, 2017Updated 9 years ago
- a tiny tool for swf hacking, just browse it:)☆243Mar 13, 2013Updated 13 years ago