doyensec / wsrepl
WebSocket REPL for pentesters
☆217Updated 7 months ago
Alternatives and similar repositories for wsrepl:
Users that are interested in wsrepl are comparing it to the libraries listed below
- A rapid HTTP downgrade smuggling scanner written in Go.☆253Updated 9 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆152Updated 3 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 3 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆133Updated 2 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆218Updated 3 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆256Updated 8 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆151Updated 6 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆122Updated 8 months ago
- ☆164Updated 4 months ago
- unleashed ffuf☆110Updated 8 months ago
- Session Hijacking Visual Exploitation☆196Updated 11 months ago
- Black box fuzzer for web applications☆423Updated 8 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆91Updated 8 months ago
- Repository to store exploits created by Assetnotes Security Research team☆175Updated last year
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆347Updated last week
- ☆165Updated 6 months ago
- ☆83Updated 8 months ago
- A streamlined tool for discovering private TLDs for security research.☆178Updated last week
- The Template Injection Table is intended to help during the testing of an application for template injection vulnerabilities.☆71Updated 11 months ago
- Web dashboard for Interactsh client☆201Updated last week
- A GraphQL enumeration and extraction tool☆130Updated 2 years ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated 11 months ago
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆79Updated 8 months ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆173Updated last month
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆164Updated 4 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆335Updated 3 months ago
- Search for sensitive data in Postman public library.☆198Updated 2 months ago
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆200Updated last month
- Community curated list of search queries for various products across multiple search engines.☆164Updated this week