doyensec / wsreplLinks
WebSocket REPL for pentesters
☆226Updated last year
Alternatives and similar repositories for wsrepl
Users that are interested in wsrepl are comparing it to the libraries listed below
Sorting:
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated 2 weeks ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆162Updated 11 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆306Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆280Updated last month
- A GraphQL enumeration and extraction tool☆133Updated 2 years ago
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆166Updated 2 years ago
- A tool to inspect and attack version 1 GUIDs☆238Updated 3 years ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆325Updated 11 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆180Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆99Updated 2 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆148Updated 10 months ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆100Updated 3 months ago
- ☆85Updated 4 months ago
- unleashed ffuf☆224Updated 5 months ago
- ☆153Updated 2 years ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆48Updated 11 months ago
- Find CVE PoCs on GitHub☆153Updated 3 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- A streamlined tool for discovering private TLDs for security research.☆224Updated this week
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications (Official BApp Extension Available)☆236Updated last month
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆197Updated 5 months ago
- Burp HTTP history browser (bhhb) - A tool to view HTTP history exported from Burp Suite Community Edition☆126Updated 11 months ago
- A chrome/Firefox extension to retrieve and load react javascript chunks all at once for a wide range of javascript techs☆73Updated 4 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- ☆172Updated 2 months ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆228Updated 4 months ago
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆143Updated 7 months ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆138Updated 4 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last week
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆178Updated 9 months ago