detectify / vulnerable-nginx

Related projects: ⓘ

• neex / http2smugl
  ☆527Updated 9 months ago
• BlackFan / content-type-research
  Content-Type Research
  ☆464Updated 7 months ago
• barrracud4 / image-upload-exploits
  This repository contains various media files for known attacks on web applications processing media files. Useful for penetration tests a…
  ☆313Updated 3 years ago
• Charlie-belmer / nosqli
  NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
  ☆351Updated 2 years ago
• janmasarik / resolvers
  List of periodically validated public DNS resolvers
  ☆229Updated this week
• trufflesecurity / driftwood
  Private key usage verification
  ☆402Updated 8 months ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆331Updated last month
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆772Updated 2 years ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆250Updated last year
• BishopFox / h2csmuggler
  HTTP Request Smuggling over HTTP/2 Cleartext (h2c)
  ☆637Updated 2 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆217Updated 3 years ago
• neex / 1u.ms
  ☆160Updated 3 years ago
• msrkp / PPScan
  Client Side Prototype Pollution Scanner
  ☆507Updated 2 years ago
• ettic-team / dnsbin
  The request.bin of DNS request
  ☆228Updated 6 years ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆350Updated last year
• Sh1Yo / request_smuggler
  Http request smuggling vulnerability scanner
  ☆223Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆117Updated 9 months ago
• teknogeek / ssrf-sheriff
  A simple SSRF-testing sheriff written in Go
  ☆310Updated 5 months ago
• ngalongc / openapi_security_scanner
  ☆165Updated 3 years ago
• famasoon / crtsh
  This tool shows the result of crt.sh
  ☆85Updated 2 years ago
• glebarez / cero
  Scrape domain names from SSL certificates of arbitrary hosts
  ☆596Updated 5 months ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆305Updated 2 years ago
• BishopFox / json-interop-vuln-labs
  Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
  ☆194Updated last year
• codingo / DNSCewl
  A DNS Bruteforcing Wordlist Generator
  ☆346Updated last year
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆188Updated this week
• The-Login / DNS-Analysis-Server
  Tools to assess DNS security.
  ☆146Updated 6 months ago
• resyncgg / ripgen
  Rust-based high performance domain permutation generator.
  ☆268Updated 9 months ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆147Updated last year
• FleexSecurity / fleex
  Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.
  ☆242Updated last month
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆398Updated 2 months ago