hisxo / JSpectorLinks
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
☆369Updated 2 years ago
Alternatives and similar repositories for JSpector
Users that are interested in JSpector are comparing it to the libraries listed below
Sorting:
- Useful "Match and Replace" burpsuite rules☆351Updated 2 years ago
- ☆249Updated 4 years ago
- XSS payloads for bypassing WAF. This repository is updating continuously.☆251Updated last year
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆227Updated last year
- Smart context-based SSRF vulnerability scanner.☆357Updated 3 years ago
- Never forget where you inject.☆287Updated 2 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆244Updated 7 months ago
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆274Updated last month
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆285Updated last year
- All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)☆301Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated 2 years ago
- i will upload more templates here to share with the comunity.☆558Updated last year
- EndExt is a .go tool for extracting all the possible endpoints from the JS files☆216Updated last year
- Automated Tool for Testing Header Based Blind SQL Injection☆289Updated 2 years ago
- ☆301Updated 2 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆384Updated last month
- Local File Inclusion discovery and exploitation tool☆330Updated 9 months ago
- ☆404Updated 3 weeks ago
- ☆540Updated last year
- jsleak is a tool to find secret , paths or links in the source code during the recon.☆547Updated last month
- Fuzz 401/403/404 pages for bypasses☆343Updated 10 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆496Updated 3 years ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆281Updated last year
- Generate tens of thousands of subdomain combinations in a matter of seconds☆272Updated 2 years ago
- Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing☆155Updated 7 months ago
- A subdomain fuzzing tool☆168Updated last year
- ☆135Updated 11 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆75Updated last year
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆193Updated last year