ethicalhackingplayground / TProxer
A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
☆176Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for TProxer
- Nuclei Templates - Here you will find the templates I use while hunting☆116Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆116Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆102Updated 2 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 2 years ago
- ☆144Updated last year
- All Type of Payloads☆126Updated 7 months ago
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- A path-normalization pentesting tool.☆115Updated last year
- a Go code to detect leaks in JS files via regex patterns☆138Updated 3 years ago
- A Burp Suite extension to extract datas from source code while browsing.☆151Updated 7 months ago
- Enumerate Subdomains Through Google Dorks☆122Updated 3 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆121Updated 2 years ago
- LFI Payloads List coolected from github repos☆71Updated 4 years ago
- Hidden parameters discovery suite☆221Updated last year
- ☆146Updated last year
- ☆91Updated 4 years ago
- phpMyAdmin XSS☆114Updated 2 weeks ago
- ☆88Updated 3 years ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆112Updated 2 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- ☆86Updated 3 years ago
- Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519☆60Updated 2 months ago
- ☆128Updated last year
- nuclei-bb-templates☆48Updated 2 years ago
- ☆108Updated last year
- A very (very) FAST and simple subdomain finder based on online & free services. Without any configuration requirements.☆104Updated last week
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated last year
- Wordlist to bruteforce for LFI☆118Updated 5 years ago