daxAKAhackerman / XSS-Catcher

Related projects ⓘ

Alternatives and complementary repositories for XSS-Catcher

• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 3 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆145Updated 3 years ago
• smaranchand / bucky
  Bucky (An automatic S3 bucket discovery tool)
  ☆190Updated 2 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆210Updated 3 years ago
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆266Updated 3 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 4 years ago
• Dheerajmadhukar / Lilly
  Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…
  ☆175Updated 3 years ago
• MindPatch / lorsrf
  Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load
  ☆289Updated last month
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆173Updated 2 years ago
• raverrr / plution
  Prototype pollution scanner using headless chrome
  ☆197Updated 2 years ago
• ethicalhackingplayground / ssrf-tool
  ☆143Updated 2 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆162Updated 3 years ago
• ethicalhackingplayground / bxss
  ☆223Updated 5 months ago
• Leoid / MatchandReplace
  Match and Replace script used to automatically generate JSON option file to BurpSuite
  ☆213Updated 5 years ago
• 0xspade / Combined-Wordlists
  A combined wordlists for files and directory discovery
  ☆116Updated 3 years ago
• Josue87 / AnalyticsRelationships
  Get related domains / subdomains by looking at Google Analytics IDs
  ☆228Updated 2 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆150Updated last year
• MilindPurswani / whoxyrm
  A reverse whois tool based on Whoxy API.
  ☆158Updated 7 months ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆180Updated last month
• Impact-I / x8-Burp
  Hidden parameters discovery suite
  ☆221Updated 2 years ago
• xer0times / BugBounty
  Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...
  ☆145Updated 4 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• rotemreiss / uddup
  Urls de-duplication tool for better recon.
  ☆136Updated 4 months ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆274Updated 3 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆191Updated 3 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆198Updated 4 months ago
• serain / bbrecon
  Python library and CLI for the Bug Bounty Recon API
  ☆220Updated 3 years ago
• BitTheByte / Monitorizer
  Monitoring framework to detect and report newly found subdomains on a specific target using various scanning tools
  ☆265Updated 4 months ago