fcavallarin / burp-dom-scanner
Burp Suite's extension to scan and crawl Single Page Applications
☆102Updated last year
Alternatives and similar repositories for burp-dom-scanner:
Users that are interested in burp-dom-scanner are comparing it to the libraries listed below
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆85Updated last year
- ☆53Updated 3 years ago
- A Python script to exploit CVE-2022-36446 Software Package Updates RCE (Authenticated) on Webmin < 1.997.☆112Updated last month
- Spring4Shell Burp Scanner☆71Updated 2 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- CVE Collection of jQuery UI XSS Payloads☆118Updated 2 years ago
- phpMyAdmin XSS☆116Updated 4 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆124Updated 3 years ago
- ☆87Updated 10 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆75Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆58Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆61Updated 2 years ago
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆59Updated 2 years ago
- Endpoints Explorer is a Python script that employs multiple bypass rules to discover sensitive endpoints☆83Updated 9 months ago
- tool that generates bypasses for open redirects☆52Updated 2 years ago
- WEB API fuzzing☆24Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- Web cache poisoning vulnerability scanner.☆65Updated 2 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆75Updated 9 months ago
- ☆34Updated 2 years ago
- All Nuclei Templates☆67Updated last week
- CVE-2022-46169 Cacti remote_agent.php Unauthenticated Command Injection.☆48Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆24Updated 6 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆53Updated 4 months ago
- Nuclei template and information about the POC for CVE-2024-25600☆28Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- The purpose of this repo is to share my research☆14Updated last year
- BChecks collection for Burp Suite Professional☆94Updated 9 months ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆89Updated 2 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆55Updated last year