☆39Sep 23, 2019Updated 6 years ago
Alternatives and similar repositories for SSTI
Users that are interested in SSTI are comparing it to the libraries listed below
Sorting:
- Pulse SSL VPN Arbitrary File Read burp extension☆24Sep 24, 2019Updated 6 years ago
- Deeplack is a python script designed for comparing images (screenshots) using DeepAI to detect changes on websites.☆14Jun 19, 2019Updated 6 years ago
- Check for know iframeBuster XSS☆12Sep 25, 2024Updated last year
- List of special metadata IPs used in cloud services☆11Aug 9, 2019Updated 6 years ago
- A tool to find sensitive keys and passwords in Travis logs☆139Jun 27, 2021Updated 4 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆99Dec 30, 2019Updated 6 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Apr 17, 2020Updated 5 years ago
- Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.☆67Apr 25, 2025Updated 10 months ago
- A tool to migrate Burpsuite HTTP history to Caido☆35Apr 25, 2025Updated 10 months ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆74Jan 4, 2021Updated 5 years ago
- AWS,AZURE,GOOGLE CLOUD IP CIDRS☆50Feb 14, 2022Updated 4 years ago
- Service-Now Article Bruteforcer☆16Jun 5, 2020Updated 5 years ago
- SSRF testing tool☆245Dec 8, 2022Updated 3 years ago
- ☆276Oct 19, 2021Updated 4 years ago
- AWS S3 Bucket Finder.☆14Oct 28, 2025Updated 4 months ago
- Scan secrets from Continuous Integration Build Logs☆53Oct 14, 2019Updated 6 years ago
- A (dead-simple) Golang utility allowing you to monitor HTTP endpoints☆38Feb 12, 2023Updated 3 years ago
- Continuous monitoring for JavaScript files☆225Dec 29, 2019Updated 6 years ago
- Recursive DNS Subdomain Enumerator with dead-end avoidance system (BETA)☆146Apr 9, 2021Updated 4 years ago
- Hacking tools☆148Feb 11, 2025Updated last year
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Mar 1, 2023Updated 2 years ago
- A tool to scan for .DS_Store files on webservers☆35Mar 28, 2021Updated 4 years ago
- exploit for ImageMagick's uninitialized memory disclosure in gif coder☆284Jul 22, 2017Updated 8 years ago
- ☆36Jul 15, 2020Updated 5 years ago
- A tool to bruteforce nameservers when working with subdomain delegations to AWS.☆58Aug 22, 2019Updated 6 years ago
- secretz, minimizing the large attack surface of Travis CI☆324May 30, 2022Updated 3 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆68Aug 15, 2021Updated 4 years ago
- Collection of Some Good research Documentation☆27Dec 10, 2017Updated 8 years ago
- A proof of concept to dump Django website's source code affected by NGINX's off-by-slash alias directive misconfiguration.☆24Dec 8, 2022Updated 3 years ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.☆229Feb 24, 2019Updated 7 years ago
- Burp Suite extension to easily export sub domains☆44Nov 29, 2019Updated 6 years ago
- Unpack the source code of React and other Webpacked apps!☆118Sep 30, 2025Updated 5 months ago
- ☆250Jun 6, 2018Updated 7 years ago
- ☆28Apr 22, 2025Updated 10 months ago
- Burp extension to generate multi-step CSRF POC.☆31Sep 23, 2019Updated 6 years ago
- Fresh DNS servers☆85Feb 8, 2026Updated 3 weeks ago
- Dump exposed HTTP .git fast☆51Nov 11, 2022Updated 3 years ago
- Repository for hosting my research papers☆511Apr 17, 2024Updated last year