js主动参数提取与构造工具
☆92Dec 22, 2025Updated 3 months ago
Alternatives and similar repositories for ParamX
Users that are interested in ParamX are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 用于提取Webpack打包的未加载的JavaScript文件,并扫描这些文件以查找敏感信息。☆39Sep 17, 2025Updated 6 months ago
- adb未授权管理☆40Feb 24, 2026Updated last month
- URLReplayer是一个burp插件,一个用于自动化 API 接口提取、参数解析及批量验证 的 Burp Suite 插件。旨在从 HTTP 响应中快速挖掘未公开的 API 端点并进行有效性测试。☆39Jan 15, 2026Updated 2 months ago
- 一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。☆13Mar 7, 2025Updated last year
- MaR - Matcher and Replacer, Perform intelligent replacement based on precise matching.☆333Mar 24, 2026Updated 2 weeks ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 对指定目录下进行敏感信息检索☆15Feb 14, 2025Updated last year
- chrome和edge查看exif有效信息的插件☆12Mar 3, 2025Updated last year
- 开源项目,所有项目仅供参考学习,禁止用于任何违法行为,任何违法行为需使用者本人自己承担相应法律责任。☆68Jan 17, 2026Updated 2 months ago
- 本工具不去主动的做端口扫描,通过聚合了三大资产测绘引擎接口语法,快速获取与目标有关的所有资产列表,并进行一键指纹识别(通用系统指纹、ICP归属等),筛出高价值及脆弱资产。☆31Mar 13, 2025Updated last year
- hessian反序列化利用工具☆40Jan 4, 2026Updated 3 months ago
- ☆43Sep 8, 2025Updated 7 months ago
- ☆238Mar 31, 2026Updated last week
- ☆47Sep 30, 2025Updated 6 months ago
- JeecgBoot综合漏洞利用工具版本更新☆17Feb 18, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- XSS-Detector是一款基于多线程并发架构的Burp Suite扩展插件,通过精确请求-响应映射机制高效检测Web应用中的XSS漏洞。☆26Apr 27, 2025Updated 11 months ago
- JeecgBoot Go版本综合漏洞检测工具☆85Feb 24, 2026Updated last month
- 红队浏览器插件-检测VUE站点未授权漏洞☆735Sep 9, 2025Updated 7 months ago
- Open-source attack surface management and authorized security automation platform for asset discovery, service probing, scan orchestratio…☆510Mar 8, 2026Updated last month
- 在ShiroAttack2基础上增加 Header 长度绕过、分块、短 Payload等功能☆71Mar 24, 2026Updated 2 weeks ago
- ☆76Sep 10, 2025Updated 6 months ago
- Shiro反序列化漏洞一站式综合利用工具☆134Jan 22, 2026Updated 2 months ago
- ☆13Aug 13, 2024Updated last year
- 网络空间资产�测绘、ICP备案、天眼查股权结构图、端口扫描、指纹识别、小程序敏感信息提取。☆1,267Apr 2, 2026Updated last week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Vue 路由提取同时去除权限校验☆131Jul 3, 2025Updated 9 months ago
- JSFindAPI是一款自动从html页面中获取js链接,并自动访问js提取js中的api路径,然后自动进行api未授权测试的插件,同时也可被动监听,当访问js时自动提取api进行访问,提取api接口主要根据AJAX,XMLHttpRequest,axios,Vue.js等…☆30Oct 20, 2025Updated 5 months ago
- 漏洞挖掘小工具,用于发现页面中的隐藏可点击元素☆84Jun 4, 2025Updated 10 months ago
- WannaCry_HTA 是一个基于 HTA(HTML Application)技术开发的高度仿真 WannaCry 勒索病毒界面模拟程序。该项目简单、完全可控,专为安全研究、应急演练和安全教育场景设计。界面UI参考zR00t1师傅项目编写。☆25Aug 13, 2025Updated 7 months ago
- 通过Whois信息发现更多与目标有关联的域名,扩大攻击面☆14Mar 9, 2022Updated 4 years ago
- GYscan是一款基于Go语言开发的现代化综合渗透测试工具,专为安全研究人员、渗透测试工程师和红队成员设计。项目采用模块化架构,包含C2服务器端和客户端组件,支持Windows和Linux平台,提供系统安全分析和漏洞扫描功能。☆76Mar 3, 2026Updated last month
- 专为AWD攻防演练比赛设计的综合性工具箱,集成漏洞利用、流量监控、自动化攻击等功能☆71Nov 20, 2025Updated 4 months ago
- 浏览器存储桶配置漏洞检测插件☆245Nov 27, 2025Updated 4 months ago
- 一个批量请求工具☆43Dec 14, 2025Updated 3 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- autoxss Million dollars Google AND Firefox plugin☆49Mar 26, 2025Updated last year
- ☆19Jan 25, 2024Updated 2 years ago
- Parsing 是一个 Chrome 插件,选择ai分析当前页面的Js代码,内置提示词,不再需要单拎js。以及信息收集功能,提升渗透测试效率。☆56Jan 28, 2026Updated 2 months ago
- CryptoJS常规加解密自吐密钥、加解密方式,快速定位加解密位置(无视混淆)。SRC和常规渗透神器☆611Jan 21, 2026Updated 2 months ago
- 针对JWT渗透开发的漏洞验证/密钥爆破工具,针对CVE-2015-9235/空白密钥/未验证签名攻击/CVE-2016-10555/CVE-2018-0114/CVE-2020-28042的结果生成用于FUZZ,也可使用字典/字符枚举(包括JJWT)的方式进行爆破(JWT …☆283Aug 12, 2025Updated 7 months ago
- 一款Google信息收集插件,包含域名,map,js等文件提取☆24Apr 5, 2025Updated last year
- xxljob-Hessian-Exp 一款XXL-JOB <=2.0.1 Hessian反序列化图形化利用工具,可不出网利用☆36Dec 31, 2024Updated last year