hussein98d / LFI-files
Wordlist to bruteforce for LFI
☆123Updated 5 years ago
Alternatives and similar repositories for LFI-files:
Users that are interested in LFI-files are comparing it to the libraries listed below
- Prototype Pollution Scanner☆113Updated 3 years ago
- LFI Payloads List coolected from github repos☆77Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆131Updated 4 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- ☆95Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 4 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆65Updated 2 years ago
- An MS Sharepoint and Frontpage Auditing Tool☆48Updated 4 months ago
- Burp Bounty profiles☆82Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- ☆93Updated 4 years ago
- ☆87Updated 3 years ago
- ☆32Updated 2 years ago
- ☆66Updated 2 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆58Updated 5 years ago
- Extract JavaScript files from burp suite project with ease.☆88Updated 3 years ago
- A combined wordlists for files and directory discovery☆123Updated 3 years ago
- Searching for virtual hosts among non-resolvable domains☆87Updated 4 years ago
- A Burp Suite extension for CSRF proof of concepts.☆50Updated last year
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 2 years ago
- ☆59Updated 8 months ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆66Updated 4 years ago
- Check AWS S3 instances for read/write/delete access☆120Updated 3 years ago
- Directory scans☆82Updated last year
- ☆77Updated 2 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆132Updated 6 months ago