gnothiseautonlw / burp-shell-fwd-lfiLinks
A Burp Suite plugin/extension that offers a shell in Burp. Both useful for OS Command injection and LFI exploration
☆79Updated 4 years ago
Alternatives and similar repositories for burp-shell-fwd-lfi
Users that are interested in burp-shell-fwd-lfi are comparing it to the libraries listed below
Sorting:
- Wordlist to bruteforce for LFI☆124Updated 5 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- ☆42Updated last year
- Prototype Pollution Scanner☆120Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- ☆53Updated 4 years ago
- Port Swigger Labs divided on the based of level and topic.☆13Updated 3 years ago
- An MS Sharepoint and Frontpage Auditing Tool☆49Updated 7 months ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- HTTP verb tampering & methods enumeration☆59Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated 2 years ago
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Extract JavaScript files from burp suite project with ease.☆90Updated 3 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆119Updated 3 years ago
- ☆95Updated 3 years ago
- Damn Vulnerable PHP Application (DVPA) - It is Lab Written in The PHP lang, Which Contains PHP Type Juggling - RCE Challenges☆32Updated 3 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated last year
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆70Updated 4 years ago
- Web CTF CheatSheet 🐈☆34Updated 6 years ago
- LFI Payloads List coolected from github repos☆79Updated 5 years ago
- ☆89Updated 3 years ago
- ☆32Updated 2 years ago
- ☆57Updated last year
- 🔭 Collection of regexp pattern for security passive scanning☆114Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 3 years ago
- Detects request smuggling via HTTP/2 downgrades.☆92Updated 2 years ago
- Script for Bug Bounty☆29Updated 3 years ago