glebarez / padre
Blazing fast, advanced Padding Oracle exploit
☆236Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for padre
- PP-finder Help you find gadget for prototype pollution exploitation☆138Updated 3 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆252Updated 4 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆143Updated this week
- A fuzzer for finding anomalies and analyzing how servers respond to different HTTP headers☆317Updated 11 months ago
- gRPC-Web Pentesting Suite + Burp Suite Extension☆166Updated 4 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆313Updated 6 months ago
- A lightweight tool for orchestrating and organizing your bug hunting recon / pentesting command-line workflows☆275Updated last year
- Distribute ordinary bash commands over many systems☆161Updated 2 years ago
- ☆146Updated last year
- CT Log Scanner☆289Updated last month
- ☆369Updated last year
- Rust-based high performance domain permutation generator.☆275Updated 11 months ago
- ☆170Updated this week
- A rapid HTTP downgrade smuggling scanner written in Go.☆248Updated 6 months ago
- Bambdas collection for Burp Suite Professional and Community.☆206Updated 3 weeks ago
- A GraphQL enumeration and extraction tool☆128Updated last year
- Session Hijacking Visual Exploitation☆194Updated 8 months ago
- Discover new target domains using Content Security Policy☆383Updated this week
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆107Updated 4 months ago
- Automated learning of regexes for DNS discovery☆358Updated last year
- Find CVE PoCs on GitHub☆138Updated last year
- Black box fuzzer for web applications☆404Updated 4 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆119Updated 2 weeks ago
- Enumerate / Dump Docker Registry☆162Updated 7 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆155Updated last week
- A tool for auditing endpoints defined in exposed (Swagger/OpenAPI) definition files.☆543Updated this week
- HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy + Exploit Timing Attacks☆143Updated 2 weeks ago
- A python module to explore the object tree to extract paths to interesting objects in memory.☆79Updated 8 months ago
- Certainly is a offensive security toolkit to capture large amounts of traffic in various network protocols in bitflip and typosquat scena…☆138Updated 2 months ago
- A tool to inspect and attack version 1 GUIDs☆206Updated 2 years ago