hisxo / JSpectorLinks
A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
☆360Updated last year
Alternatives and similar repositories for JSpector
Users that are interested in JSpector are comparing it to the libraries listed below
Sorting:
- Useful "Match and Replace" burpsuite rules☆347Updated last year
- ☆242Updated 4 years ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆243Updated 2 months ago
- i will upload more templates here to share with the comunity.☆545Updated last year
- A comprehensive list of custom filters for Logger++ to identify various vulnerabilities in different API styles☆224Updated 7 months ago
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆382Updated 2 years ago
- Smart context-based SSRF vulnerability scanner.☆351Updated 3 years ago
- Automated Tool for Testing Header Based Blind SQL Injection☆279Updated last year
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆274Updated last year
- A Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidde…☆373Updated 2 months ago
- Gotator is a tool to generate DNS wordlists through permutations.☆478Updated 2 years ago
- This is a python wrapper around the amazing KNOXSS API by Brute Logic☆270Updated last week
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆384Updated this week
- Local File Inclusion discovery and exploitation tool☆310Updated 5 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆169Updated 7 months ago
- ☆529Updated 11 months ago
- A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas i…☆176Updated 9 months ago
- This tool use fuuzzing to try to bypass unknown authentication methods, who knows...☆248Updated 9 months ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆69Updated last year
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆371Updated last month
- XSS payloads for bypassing WAF. This repository is updating continuously.☆240Updated last year
- Automatic Bug finder with buprsuite☆166Updated 2 years ago
- ☆387Updated this week
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆817Updated last year
- Never forget where you inject.☆229Updated 2 years ago
- My Priv8 Nuclei Templates☆316Updated last year
- De-clutter a list of URLs☆340Updated 6 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆255Updated last year
- ☆300Updated 2 years ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆511Updated 2 months ago