cyal1 / bypass-40x
bypass 401/403
☆13Updated 2 years ago
Related projects: ⓘ
- web fuzzing && bug hunter☆59Updated 2 years ago
- Burp Extender, ssrf scanner, 自动扫描ssrf漏洞☆46Updated 3 years ago
- ☆1Updated 3 years ago
- burp extension for SSRF☆25Updated last year
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆113Updated 2 years ago
- ☆50Updated 2 years ago
- "运维的锅" - 配置不当造成的漏洞. Docker一键式部署,快速复现。☆8Updated 3 years ago
- ☆60Updated 9 months ago
- burpsuite extension for check and extract sensitive request parameter☆109Updated 3 years ago
- ☆14Updated this week
- 判断是否使用shiro的burp插件☆10Updated 3 years ago
- 简单记录下自己在挖掘SRC☆31Updated 3 years ago
- ☆50Updated this week
- ☆25Updated this week
- burp-http请求转发至其他模块的插件☆75Updated 4 years ago
- SpringBoot_Actuator_RCE☆97Updated 4 years ago
- CVE-2023-28434 nuclei templates☆32Updated last year
- 🐸Subdomain Monitor, 子域名监控☆76Updated 3 years ago
- ☆11Updated 7 years ago
- xxe oob receive file via web and ftp server☆92Updated 4 years ago
- XSTREAM<=1.4.17漏洞复现(CVE-2021-39141、CVE-2021-39144、CVE-2021-39150)☆61Updated 3 years ago
- 基于实战沉淀下的各种弱口令字典☆11Updated 4 years ago
- Script to quickly install Golang and the most popular PD repos☆52Updated last month
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆60Updated 5 years ago
- ☆26Updated this week
- ☆48Updated this week
- FuckAnywhere - 这是一个BurpSuite Jython(Python)插件,用于在HTTP请求中随处插入你想要进行测试的代码。☆48Updated 2 years ago
- AWVS13和xray的自动化扫描脚本☆17Updated 4 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆47Updated 3 weeks ago
- 使用java编写的CRLF-Injection-burp被动扫描插件☆42Updated last year