doyensec / wsreplLinks
WebSocket REPL for pentesters
☆220Updated 11 months ago
Alternatives and similar repositories for wsrepl
Users that are interested in wsrepl are comparing it to the libraries listed below
Sorting:
- A rapid HTTP downgrade smuggling scanner written in Go.☆299Updated last year
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆160Updated 7 months ago
- A GraphQL enumeration and extraction tool☆131Updated 2 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago
- Repository to store exploits created by Assetnotes Security Research team☆178Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- A tool to inspect and attack version 1 GUIDs☆225Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆164Updated 10 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 3 months ago
- ☆85Updated last year
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆211Updated 2 months ago
- jxscout superpowers JavaScript analysis for security researchers☆177Updated last month
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆141Updated 11 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆315Updated 7 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆141Updated 6 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆89Updated 3 months ago
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆119Updated 3 weeks ago
- Search for sensitive data in Postman public library.☆206Updated 5 months ago
- Session Hijacking Visual Exploitation☆200Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆95Updated last year
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated 2 years ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆181Updated last month
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆176Updated 5 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆169Updated 8 months ago
- ☆152Updated last year
- ☆171Updated 3 weeks ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆90Updated last month
- ☆177Updated 8 months ago
- A streamlined tool for discovering private TLDs for security research.☆211Updated this week
- Find CVE PoCs on GitHub☆147Updated last year