georlav / objectmap
A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
☆23Updated 5 years ago
Related projects: ⓘ
- My fuzzing workshop from PHDays9☆27Updated 5 years ago
- PoC for CVE-2020-8617 (BIND)☆45Updated 4 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 2 years ago
- A python-based padding oracle tool☆20Updated last month
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated last year
- String or worldlist encoder for use in fuzzing or web application testing☆17Updated 5 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 4 years ago
- Burp Suite extension for Radamsa-powered fuzzing with Intruder☆18Updated 2 years ago
- ☆17Updated this week
- An information gathering tool to collect git emails in version control host services☆11Updated 5 years ago
- a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.☆16Updated 2 years ago
- RAS(RAndom Subdomain) Fuzzer☆43Updated 4 years ago
- Insecure Deserialization, PDF and lab☆17Updated 4 years ago
- Simple trick to increase readability of exceptions raised by Burp extensions written in Python☆42Updated 7 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆18Updated 3 years ago
- Kubernetes Scanner☆41Updated 2 years ago
- #INFILTRATE19 raptor's party pack.☆30Updated 8 months ago
- A simple python3 script that generate unicode payloads..☆9Updated 4 years ago
- CVE-2020-10749 PoC (Kubernetes MitM attacks via IPv6 rogue router advertisements)☆25Updated 4 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 4 months ago
- Python tool for large scale git analysis. Inspired by gitrob.☆20Updated 4 years ago
- burp extender for fuzzing☆10Updated 6 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆16Updated 4 years ago
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆26Updated 3 months ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆11Updated 3 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- Signatures for wraith used to detect secrets across various sources☆15Updated 2 years ago
- HTTP Desync Attack☆28Updated 4 years ago
- Simple WebSocket fuzzer☆32Updated last year
- ☆11Updated this week