digininja / svg_xss
Defending against XSS in SVG files
☆30Updated 4 years ago
Related projects: ⓘ
- ☆42Updated 2 years ago
- Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan☆42Updated last week
- dns rebind tool with custom scripts☆75Updated last year
- Hacking Artifactory with server side template injection☆50Updated 4 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 2 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆62Updated 3 years ago
- A Web-UI for subdomain enumeration (subfinder)☆53Updated 4 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated last year
- Compiles a list of major CDN and WAF subnets.☆62Updated this week
- A Burp Extension designed to identify argument injection vulnerabilities.☆115Updated 5 years ago
- Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )☆31Updated 4 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆42Updated 3 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆84Updated 5 years ago
- ☆49Updated 4 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆50Updated 2 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆54Updated last year
- ☆35Updated 4 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆72Updated 4 years ago
- Burp Extension to manipulate AES encrypted payloads☆14Updated 2 years ago
- Automated HTTP Request Repeating With Burp Suite☆63Updated last year
- ☆35Updated 6 years ago
- differer finds how URLs are parsed by different languages in order to help bug hunters break filters☆63Updated 4 years ago
- Broken Link Hijacking Burp Extension☆54Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆61Updated 4 years ago
- Gopher Tomcat Deployer☆47Updated 5 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆112Updated 4 years ago
- subdomain bruteforce list☆96Updated 2 years ago
- ☆21Updated last month
- ☆44Updated 2 years ago
- ☆27Updated 3 years ago