d0ge / sign-saboteur
SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
☆134Updated 3 months ago
Related projects: ⓘ
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆242Updated 4 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆110Updated last month
- Search for sensitive data in Postman public library.☆179Updated last month
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- AI-powered ffuf wrapper☆119Updated 3 weeks ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆297Updated 4 months ago
- The Most Advanced Client-Side Prototype Pollution Scanner☆125Updated this week
- gRPC-Web Pentesting Suite + Burp Suite Extension☆159Updated 2 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆103Updated this week
- Session Hijacking Visual Exploitation☆189Updated 6 months ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆139Updated last year
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆56Updated 6 months ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆218Updated 5 months ago
- Bambdas collection for Burp Suite Professional and Community.☆193Updated last month
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆87Updated last month
- ☆146Updated 2 weeks ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆250Updated 2 months ago
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆121Updated 6 months ago
- ☆116Updated this week
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆237Updated last year
- ☆189Updated 3 months ago
- Check subdomains for subdomain takeovers and other DNS tomfoolery☆96Updated this week
- ☆70Updated 2 months ago
- Proviesec Fuzz Scanner - dir/path web scanner☆98Updated last week
- A GraphQL enumeration and extraction tool☆127Updated last year
- Local File Inclusion discovery and exploitation tool☆210Updated last month
- Tool to parse subdomains from dmarc.live☆65Updated 5 months ago
- ☆133Updated 4 months ago
- A tool to scrape the AWS ranges looking for a keyword in SSL certificate data.☆223Updated 8 months ago