doyensec / wsrepl
WebSocket REPL for pentesters
☆218Updated 8 months ago
Alternatives and similar repositories for wsrepl:
Users that are interested in wsrepl are comparing it to the libraries listed below
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆155Updated 4 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 10 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 4 months ago
- A GraphQL enumeration and extraction tool☆130Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆154Updated 7 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆258Updated 2 weeks ago
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆78Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆134Updated 3 months ago
- HTTP/2 Last Frame Synchronization (also known as Single Packet Attack) low Level Library / Tool based on Scapy + Exploit Timing Attacks☆168Updated 4 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆114Updated last year
- A tool to quickly do keyword searches over Gitlab and Github for OSINT & bug bounty recon☆234Updated last year
- Session Hijacking Visual Exploitation☆197Updated last year
- unleashed ffuf☆111Updated 9 months ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆135Updated 2 weeks ago
- An experimental high-performance DNS query bruteforce tool built with AF_XDP for extremely fast and accurate bulk DNS lookups.☆145Updated this week
- Repository to store exploits created by Assetnotes Security Research team☆176Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆133Updated 9 months ago
- ☆166Updated 5 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆81Updated 3 weeks ago
- Web dashboard for Interactsh client☆208Updated last week
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…��☆346Updated 4 months ago
- FirebaseExploiter is a vulnerability discovery tool that discovers Firebase Database which are open and can be exploitable. Primarily bui…☆159Updated 2 years ago
- A tool to inspect and attack version 1 GUIDs☆218Updated 2 years ago
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆173Updated 2 months ago
- gRPC-Web Pentesting Suite + Burp Suite Extension / Hack gRPC-Web Applications☆213Updated last month
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆290Updated 4 months ago
- Identify virtual hosts by similarity comparison☆118Updated 7 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆91Updated 9 months ago
- A streamlined tool for discovering private TLDs for security research.☆180Updated this week
- Find CVE PoCs on GitHub☆145Updated last year