doyensec / burpdeveltraining

Related projects ⓘ

Alternatives and complementary repositories for burpdeveltraining

• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆280Updated 4 months ago
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆152Updated last year
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆168Updated 2 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆195Updated 3 years ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆98Updated 11 months ago
• tomdev / teh_s3_bucketeers
  ☆273Updated 3 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆394Updated 4 years ago
• 0xhelloworld-dev / public
  stuff i'm willing to share with the world lol
  ☆171Updated 2 years ago
• jobertabma / transformations
  ☆173Updated last year
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• dogangcr / vulnerable-sso
  vulnerable single sign on
  ☆147Updated 3 months ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆195Updated 6 years ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆188Updated 4 years ago
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆205Updated 4 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆293Updated 4 years ago
• FSecureLABS / dref
  DNS Rebinding Exploitation Framework
  ☆482Updated 3 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• nightowl131 / AAPG
  [A]ndroid [A]pplication [P]entest [G]uide
  ☆122Updated 5 years ago
• M507 / AWAE-Preparation
  This repository will contain all trainings and tutorials I have done/read to prepare for OSWE / AWAE.
  ☆236Updated 5 years ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆220Updated last year
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆443Updated 5 years ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆308Updated last year
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• EdOverflow / bugbountywiki
  The Bug Bounty Wiki
  ☆168Updated 6 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆381Updated last year
• root4loot / rescope
  Bugbounty scope tool
  ☆318Updated last month
• daeken / SSRFTest
  SSRF testing tool
  ☆241Updated last year