davidson679 / Bypass-Web-Application-Firewalls
Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for BurpSuite Pro for bypassing web application firewalls (WAF) and XSS filters. These python scripts have been created to fuzz wierd combinations: URL Escape Characters HTML Escape Characters Binary …
☆144Updated 4 years ago
Alternatives and similar repositories for Bypass-Web-Application-Firewalls:
Users that are interested in Bypass-Web-Application-Firewalls are comparing it to the libraries listed below
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 5 years ago
- Burp Suite extension to discover assets from HTTP response.☆220Updated last week
- Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.☆173Updated 3 years ago
- Scan Victim Backup Directories & Backup Files☆178Updated last year
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆138Updated 5 years ago
- A collection of scripts to extend Burp Suite☆139Updated 5 years ago
- ☆127Updated 3 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 2 years ago
- Facebook Bug Bounties☆102Updated 3 years ago
- ☆128Updated 6 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆176Updated 4 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- XSS Hunter Burp Plugin☆149Updated 6 years ago
- Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)☆143Updated 3 years ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆155Updated 4 years ago
- Java serialization brute force attack tool.☆123Updated 7 years ago
- Toolkit to detect and keep track on Blind XSS, XXE & SSRF☆296Updated 5 years ago
- Resolve and quickly portscan a list of (sub)domains.☆86Updated 8 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆106Updated 2 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆70Updated 2 years ago
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆87Updated 2 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 3 years ago
- GUI Burp Plugin to ease discovering of security holes in web applications☆147Updated 7 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆88Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆212Updated 3 months ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆91Updated 2 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆153Updated 4 years ago
- A tool to find sensitive keys and passwords in Travis logs☆141Updated 3 years ago