doyensec / wsrepl

Related projects ⓘ

Alternatives and complementary repositories for wsrepl

• d0ge / sign-saboteur
  SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens
  ☆141Updated last month
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆138Updated 3 months ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆248Updated 6 months ago
• mschwager / route-detect
  Find authentication (authn) and authorization (authz) security bugs in web application routes.
  ☆252Updated 4 months ago
• AethliosIK / reset-tolkien
  Unsecure time-based secret exploitation and Sandwich attack implementation Resources
  ☆117Updated 2 weeks ago
• trickest / find-gh-poc
  Find CVE PoCs on GitHub
  ☆137Updated last year
• usdAG / FlowMate
  FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…
  ☆155Updated last week
• cybervelia / graphicator
  A GraphQL enumeration and extraction tool
  ☆128Updated last year
• projectdiscovery / tldfinder
  A streamlined tool for discovering TLDs, associated domains, and related domain names.
  ☆143Updated this week
• doyensec / Session-Hijacking-Visual-Exploitation
  Session Hijacking Visual Exploitation
  ☆194Updated 8 months ago
• assetnote / exploits
  Repository to store exploits created by Assetnotes Security Research team
  ☆175Updated last year
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆133Updated 2 months ago
• doyensec / CSPTBurpExtension
  CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.
  ☆107Updated 4 months ago
• Hackmanit / template-injection-table
  The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.
  ☆65Updated 8 months ago
• sw33tLie / uff
  unleashed ffuf
  ☆96Updated 4 months ago
• Hackmanit / TInjA
  TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…
  ☆313Updated 6 months ago
• xscorp / jsmug
  A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
  ☆112Updated 7 months ago
• dhn / udon
  A simple tool that helps to find assets/domains based on the Google Analytics ID.
  ☆169Updated 6 months ago
• google / protobuf-extensibility-for-burp
  ☆83Updated 5 months ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆83Updated 5 months ago
• intruder-io / guidtool
  A tool to inspect and attack version 1 GUIDs
  ☆206Updated 2 years ago
• Anof-cyber / ParaForge
  A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing
  ☆140Updated last year
• nxenon / h2spacex
  HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy‌ + Exploit Timing Attacks
  ☆143Updated 2 weeks ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆195Updated 3 weeks ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆358Updated last year
• nullenc0de / gofuzz
  ☆157Updated 2 months ago
• Brum3ns / firefly
  Black box fuzzer for web applications
  ☆404Updated 4 months ago
• trufflesecurity / of-CORS
  ☆146Updated last year
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆178Updated 2 years ago
• pruzko / hakuin
  A blazing fast Blind SQL Injection optimization and automation framework.
  ☆118Updated last week