daffainfo / match-replace-burp
Useful "Match and Replace" burpsuite rules
☆338Updated last year
Related projects ⓘ
Alternatives and complementary repositories for match-replace-burp
- ☆235Updated 3 years ago
- A collection oneliner scripts for bug bounty☆171Updated 8 months ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆260Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆378Updated last year
- i will upload more templates here to share with the comunity.☆528Updated 7 months ago
- Smart context-based SSRF vulnerability scanner.☆347Updated 2 years ago
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆211Updated last month
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆215Updated 6 months ago
- De-clutter a list of URLs☆307Updated 7 months ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆342Updated last year
- ☆149Updated last year
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆246Updated 7 months ago
- Burp extension to create target specific and tailored wordlist from burp history.☆232Updated 2 years ago
- Never forget where you inject.☆211Updated last year
- List of reporting templates I have used since I started doing BBH.☆235Updated 2 months ago
- Automatic Bug finder with buprsuite☆165Updated last year
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆273Updated 8 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆237Updated last year
- My Priv8 Nuclei Templates☆286Updated 6 months ago
- All Type of Payloads☆126Updated 7 months ago
- Go script for bypassing 403 forbidden☆144Updated 3 years ago
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆183Updated 4 months ago
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆215Updated 2 months ago
- ☆158Updated 2 weeks ago
- Automated tool for domains & subdomains gathering☆178Updated last year
- Full Nuclei automation script with logic explanation.☆237Updated 2 years ago
- ☆123Updated 3 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆338Updated this week
- Finding XSS during recon☆248Updated 2 years ago
- ☆512Updated 4 months ago