ghsec / BBProfilesLinks
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.
☆63Updated 3 years ago
Alternatives and similar repositories for BBProfiles
Users that are interested in BBProfiles are comparing it to the libraries listed below
Sorting:
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆91Updated 6 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 5 years ago
- Burp Bounty profiles☆83Updated 3 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Updated 4 years ago
- Broken Link Hijacking Burp Extension☆57Updated 6 years ago
- Burp Suite extension to easily export sub domains☆44Updated 5 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 5 years ago
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆154Updated 4 years ago
- Fuzzing for LFI using Burpsuite☆66Updated 9 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆112Updated 6 years ago
- unicode abnormalizer to takes a unicode string and abnormalizes it by character replacment☆26Updated 5 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- Get all possible href | src | url from target url or domain☆41Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 5 years ago
- Collection of scripts to test your website against vulnerabilities.☆18Updated last year
- ☆30Updated 3 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆155Updated 5 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆93Updated 5 months ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆110Updated 3 years ago
- subdomain bruteforce list☆102Updated last year
- web-based-fuzzer☆32Updated 5 years ago
- Resolve and quickly portscan a list of (sub)domains.☆87Updated 9 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆108Updated 6 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆81Updated 7 years ago
- gathers the XSS cheatsheet payloads and creates a usable wordlist☆73Updated 4 years ago
- Subvenkon is a subdomain enumerator from Venkon☆23Updated 5 years ago
- Wrapper around LinkFinder to quickly determine whether endpoints have been added/removed to JavaScript files.☆41Updated 5 years ago
- ☆37Updated 5 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- Some of my bug bounty tools☆52Updated 5 years ago