digininja / svg_xss

Related projects: ⓘ

• wallarm / fast-detects
  ☆42Updated 2 years ago
• ricardojba / poi-slinger
  Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan
  ☆42Updated last week
• h43z / dns-rebinding-tool
  dns rebind tool with custom scripts
  ☆75Updated last year
• gquere / CVE-2020-7931
  Hacking Artifactory with server side template injection
  ☆50Updated 4 years ago
• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 2 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• vortexau / cdn
  Compiles a list of major CDN and WAF subnets.
  ☆62Updated this week
• nccgroup / argumentinjectionhammer
  A Burp Extension designed to identify argument injection vulnerabilities.
  ☆115Updated 5 years ago
• Xib3rR4dAr / filter-var-sqli
  Bypassing FILTER_SANITIZE_EMAIL & FILTER_VALIDATE_EMAIL filters in filter_var for SQL Injection ( xD )
  ☆31Updated 4 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆42Updated 3 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆84Updated 5 years ago
• SafeBreach-Labs / HRS
  ☆49Updated 4 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆50Updated 2 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• pelaohxc / postMessageFinder
  ☆35Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆72Updated 4 years ago
• PortSwigger / aes-payloads
  Burp Extension to manipulate AES encrypted payloads
  ☆14Updated 2 years ago
• PortSwigger / auto-repeater
  Automated HTTP Request Repeating With Burp Suite
  ☆63Updated last year
• buckhacker / SubDomainTakeoverTools
  ☆35Updated 6 years ago
• jimen0 / differer
  differer finds how URLs are parsed by different languages in order to help bug hunters break filters
  ☆63Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆54Updated 5 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆61Updated 4 years ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 5 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆112Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆96Updated 2 years ago
• omespino / gcs_instace_takeover
  ☆21Updated last month
• rekter0 / exploits
  ☆44Updated 2 years ago
• minight / h2csmuggler
  ☆27Updated 3 years ago