A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.
☆184Nov 22, 2021Updated 4 years ago
Alternatives and similar repositories for TProxer
Users that are interested in TProxer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Hidden parameters discovery suite☆225Nov 14, 2022Updated 3 years ago
- Magic Header Blind Xss tool (deliver blind xss payloads in request headers).☆25May 30, 2021Updated 5 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Apr 25, 2022Updated 4 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆629Jan 20, 2021Updated 5 years ago
- Burp extension to create target specific and tailored wordlist from burp history.☆259Dec 8, 2021Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A burp-suite plugin that extract all parameter names from in-scope requests☆30Nov 9, 2021Updated 4 years ago
- Burp Suite Extensions☆13Oct 19, 2021Updated 4 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆297Sep 22, 2024Updated last year
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆178Oct 26, 2024Updated last year
- Fast and customizable vulnerability scanner For JIRA written in Python☆342Dec 31, 2024Updated last year
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- Nuclei Templates to reproduce Cracking the lens's Research☆132Jan 8, 2022Updated 4 years ago
- My own Custom nuclei templates☆26Jun 23, 2026Updated last week
- Python script to launch burp scans automatically☆32Jul 18, 2021Updated 4 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Jeeves SQLI Finder☆215May 13, 2022Updated 4 years ago
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆110Feb 16, 2022Updated 4 years ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆296Sep 26, 2023Updated 2 years ago
- TProx is a fast reverse proxy path traversal detector and directory bruteforcer.☆30Sep 16, 2021Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one pl…☆1,044Jun 6, 2026Updated 3 weeks ago
- Basic implementation of certstream to print new subdomains and domains☆36Jul 6, 2021Updated 4 years ago
- ☆251May 25, 2021Updated 5 years ago
- Finding XSS during recon☆270Sep 13, 2022Updated 3 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Looks for parameters in urls☆35Oct 14, 2024Updated last year
- ☆301Jul 16, 2022Updated 3 years ago
- Useful "Match and Replace" burpsuite rules☆373Sep 26, 2023Updated 2 years ago
- Prototype pollution scanner using headless chrome☆216Jul 27, 2022Updated 3 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆969Dec 8, 2021Updated 4 years ago
- Extract JavaScript files from burp suite project with ease.☆97Feb 19, 2022Updated 4 years ago
- ☆523Jun 5, 2023Updated 3 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆377Jul 25, 2023Updated 2 years ago
- ☆13Jun 30, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆980Dec 31, 2021Updated 4 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆58Sep 6, 2021Updated 4 years ago
- Domains belonging to the most reputed public bug bounty programs. [NOT FOR NON-MONETARY OR PRIVATE PROGRAMS]☆225Aug 29, 2024Updated last year
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆399May 28, 2026Updated last month
- Automating XSS using Bash☆365Jan 27, 2026Updated 5 months ago
- Nuclei plugin for BurpSuite☆1,330Oct 22, 2025Updated 8 months ago
- Project Morya is just a collection of bash scripts that runs iteratively to carry out various tools and recon process & store output in a…☆72Mar 5, 2022Updated 4 years ago