dwisiswant0 / ppfuzz
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
☆610Updated last year
Alternatives and similar repositories for ppfuzz:
Users that are interested in ppfuzz are comparing it to the libraries listed below
- Fetches javascript file from a list of URLS or subdomains.☆758Updated last year
- HTTP Request Smuggling Detection Tool☆489Updated last year
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆502Updated 2 years ago
- A fuzzer for detecting open redirect vulnerabilities☆729Updated 8 months ago
- A tool to check a bunch of URLs that contain reflecting params.☆564Updated 7 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆856Updated 3 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆466Updated 2 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆59Updated 10 months ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆449Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆585Updated last year
- ☆377Updated last year
- Client Side Prototype Pollution Scanner☆515Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆372Updated 3 years ago
- A Firefox Web Extension to improve the discovery of DOM XSS.☆270Updated 4 months ago
- List DTDs and generate XXE payloads using those local DTDs.☆619Updated last year
- Http request smuggling vulnerability scanner☆227Updated 2 years ago
- ☆518Updated last year
- Content-Type Research☆601Updated last year
- Accept URLs on stdin, replace all query string values with a user-supplied value☆797Updated 2 years ago
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆622Updated 3 months ago
- Rust-based high performance domain permutation generator.☆286Updated last year
- Automation for javascript recon in bug bounty.☆961Updated last year
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆306Updated 3 months ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆960Updated last month
- Scan only once by IP address and reduce scan times with Nmap for large amounts of data.☆385Updated last year
- Nuclei templates written by us.☆267Updated 3 years ago
- Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations☆351Updated 4 years ago
- Automated learning of regexes for DNS discovery☆364Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆953Updated 3 years ago
- Escalate your SSRF vulnerabilities on Modern Cloud Environments. `surf` allows you to filter a list of hosts, returning a list of viable …☆624Updated last year