cujanovic / SSRF-Testing

Related projects ⓘ

Alternatives and complementary repositories for SSRF-Testing

• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,000Updated 5 months ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,794Updated 6 months ago
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆2,873Updated last year
• D35m0nd142 / LFISuite
  Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
  ☆1,699Updated 2 years ago
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,540Updated 4 years ago
• ssl / ezXSS
  ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.
  ☆1,906Updated 3 weeks ago
• infosec-au / altdns
  Generates permutations, alterations and mutations of subdomains and then resolves them
  ☆2,333Updated 6 months ago
• RenwaX23 / XSS-Payloads
  List of XSS Vectors/Payloads
  ☆1,190Updated last week
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,037Updated 4 months ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,000Updated this week
• bugcrowd / HUNT
  ☆2,183Updated 11 months ago
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,453Updated last year
• chenjj / CORScanner
  🎯 Fast CORS misconfiguration vulnerabilities scanner
  ☆1,049Updated 2 years ago
• defparam / smuggler
  Smuggler - An HTTP Request Smuggling / Desync testing tool written in Python 3
  ☆1,819Updated 10 months ago
• GerbenJavado / LinkFinder
  A python script that finds endpoints in JavaScript files
  ☆3,724Updated 7 months ago
• masatokinugawa / filterbypass
  Browser's XSS Filter Bypass Cheat Sheet
  ☆1,116Updated 7 years ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,684Updated 3 years ago
• mandatoryprogrammer / xsshunter
  The XSS Hunter service - a portable version of XSSHunter.com
  ☆1,491Updated last year
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,540Updated 3 years ago
• Quitten / Autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆960Updated 3 weeks ago
• m4ll0k / Atlas
  Quick SQLMap Tamper Suggester
  ☆1,347Updated 2 years ago
• PortSwigger / param-miner
  ☆1,245Updated last week
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,499Updated 2 weeks ago
• elkokc / reflector
  Burp plugin able to find reflected XSS on page in real-time while browsing on site
  ☆1,133Updated 3 years ago
• s0md3v / Arjun
  HTTP parameter discovery suite.
  ☆5,280Updated 2 weeks ago
• 0xInfection / XSRFProbe
  The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
  ☆1,107Updated 3 weeks ago
• assetnote / wordlists
  Automated & Manual Wordlists provided by Assetnote
  ☆1,325Updated 3 months ago
• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,422Updated 4 years ago
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆1,966Updated 4 months ago