harisec / orange-confusion-attacksLinks
Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!
☆20Updated 10 months ago
Alternatives and similar repositories for orange-confusion-attacks
Users that are interested in orange-confusion-attacks are comparing it to the libraries listed below
Sorting:
- ☆37Updated 3 weeks ago
- Looks for parameters in urls☆34Updated 9 months ago
- Make better use of the embedded browser that comes by default with Burp☆43Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆35Updated 8 months ago
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆66Updated last month
- Advanced test for proxy & waf☆13Updated 10 months ago
- Nuclei template to detect Apache servers vulnerable to CVE-2024-38473☆29Updated 10 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆30Updated 7 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆29Updated 11 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆33Updated last year
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆55Updated 2 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- Web cache poisoning vulnerability scanner.☆71Updated 3 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆54Updated 8 months ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆15Updated last month
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- Ffuf output browser☆39Updated 2 years ago
- ☆29Updated last year
- A really fast http prober.☆39Updated last year
- A set of open-source community scripts☆62Updated 9 months ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 4 months ago
- Get list of subsidiaries for a selected company☆29Updated 6 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- vīlicus is a bug bounty api dashboard☆41Updated last year
- Bcheck scripts for Burp☆28Updated 11 months ago
- A powerful and clean bash script to dump and extract information from Project Discovery's Chaos Project https://chaos.projectdiscovery.io…☆25Updated 3 years ago
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆52Updated 4 months ago
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆23Updated 11 months ago
- ☆19Updated last year
- A simple utility to generate domain names with all possible TLDs☆23Updated 2 years ago