gnothiseautonlw / burp-shell-fwd-lfiLinks
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
☆79Updated 4 years ago
Alternatives and similar repositories for burp-shell-fwd-lfi
Users that are interested in burp-shell-fwd-lfi are comparing it to the libraries listed below
Sorting:
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- Prototype Pollution Scanner☆125Updated 4 years ago
- Wordlist to bruteforce for LFI☆125Updated 5 years ago
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 3 years ago
- ☆157Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 3 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆121Updated 3 years ago
- Some contributions in the nuclei-templates repository☆59Updated 3 years ago
- Web CTF CheatSheet 🐈☆34Updated 6 years ago
- Fast tool to extract all subdomains from crt.sh website. Output will be up to sub.sub.sub.subdomain.com with standard and advanced search…☆114Updated 3 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆108Updated 3 years ago
- LFI Payloads List coolected from github repos☆80Updated 5 years ago
- ☆81Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- Automated Web Recon Shell Scripts☆52Updated 3 years ago
- ☆32Updated 2 years ago
- ☆54Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago
- Feed it a list of subdomains, it will resolve them and tell you which ones are internal☆92Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- ☆171Updated 3 years ago
- A Simple Tool to Pull Paid Bounty Scopes for Wide Recon Actvities☆105Updated 4 years ago
- Bug Bounty & Other Stuff☆57Updated 3 years ago
- ☆89Updated 3 years ago
- ☆42Updated 4 years ago