gnothiseautonlw / burp-shell-fwd-lfiLinks
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
☆79Updated 4 years ago
Alternatives and similar repositories for burp-shell-fwd-lfi
Users that are interested in burp-shell-fwd-lfi are comparing it to the libraries listed below
Sorting:
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆118Updated 3 years ago
- Prototype Pollution Scanner☆119Updated 4 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆124Updated 2 months ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated last year
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- ☆53Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- ☆32Updated 2 years ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆105Updated 3 years ago
- Learn how to automate XSS, SSRF, LFI, SQLI, NoSQLi☆39Updated 3 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- An MS Sharepoint and Frontpage Auditing Tool☆49Updated 6 months ago
- Wordlist to bruteforce for LFI☆123Updated 5 years ago
- Bug Bounty & Other Stuff☆57Updated 3 years ago
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 3 weeks ago
- Advanced Reconnaissance and Web Application Discovery☆81Updated 3 years ago
- Automated Web Recon Shell Scripts☆51Updated 3 years ago
- Extract JavaScript files from burp suite project with ease.☆89Updated 3 years ago
- ☆87Updated 3 years ago
- ☆158Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆88Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆44Updated 2 years ago
- ☆113Updated 2 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago