hvqzao / burp-wildcardView external linksLinks
Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
☆131Dec 28, 2020Updated 5 years ago
Alternatives and similar repositories for burp-wildcard
Users that are interested in burp-wildcard are comparing it to the libraries listed below
Sorting:
- BurpBounty 魔改版本☆418Mar 21, 2022Updated 3 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆356Nov 25, 2022Updated 3 years ago
- 一款基于BurpSuite的被动式shiro检测插件☆1,790Dec 14, 2022Updated 3 years ago
- 备份文件扫描,并自动进行下载☆130Jul 26, 2023Updated 2 years ago
- 域渗透脑图中文翻译版☆280Sep 18, 2021Updated 4 years ago
- CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks☆840Jun 13, 2023Updated 2 years ago
- A Burp extension to show the Collaborator client in a tab☆24Dec 23, 2022Updated 3 years ago
- Burp extension for automated handling of CSRF tokens☆16Feb 27, 2018Updated 7 years ago
- 一款基于BurpSuite的被动式FastJson检测插件☆1,237Oct 1, 2022Updated 3 years ago
- 泛微OA_V9全版本的SQL远程代码执行漏洞☆157Apr 20, 2022Updated 3 years ago
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,116Jan 23, 2026Updated 3 weeks ago
- Burp被动扫描流量转发插件☆1,459Jun 17, 2024Updated last year
- 一些关于渗透测试的Tips☆611Dec 19, 2022Updated 3 years ago
- 基于各大API的一款企业信息查询工具,为了更快速的获取企业的信息,省去收集的麻烦过程,web端于plat平台上线☆971Apr 13, 2023Updated 2 years ago
- ☆341Oct 11, 2025Updated 4 months ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆610Jan 20, 2021Updated 5 years ago
- 就是一个练习Java反序列化的最简单环境☆14Dec 24, 2021Updated 4 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆778Feb 13, 2025Updated last year
- fastjson 被动扫描、不出网payload生成☆367Nov 19, 2021Updated 4 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆469Sep 16, 2023Updated 2 years ago
- 强制关闭360 需要管理员权限☆171Feb 6, 2022Updated 4 years ago
- burp插件开发指南☆619Aug 8, 2021Updated 4 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Jan 8, 2021Updated 5 years ago
- c# 读取登录过本机的登录失败或登录成功(4624,4625)的所有计算机信息,在内网渗透中快速定位运维管理人员。☆206Oct 15, 2019Updated 6 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。☆1,189Apr 30, 2019Updated 6 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆321Feb 1, 2024Updated 2 years ago
- TaiO 的定位是一款用于攻击方对靶标资产梳理,快速定位脆弱资产的网络空间测绘工具☆75Mar 9, 2022Updated 3 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Nov 28, 2023Updated 2 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆269Mar 4, 2022Updated 3 years ago
- ☆12Nov 17, 2024Updated last year
- 可用于多个网络资产测绘引擎 API 的命令行查询工具☆184Sep 14, 2023Updated 2 years ago
- BurpBounty插件的配置文件收集项目☆144Feb 8, 2021Updated 5 years ago
- Fastjson姿势技巧集合☆1,824Oct 20, 2023Updated 2 years ago
- A Swagger API Exploit☆1,370Jun 7, 2024Updated last year
- 🚀 一款为了学习go而诞生的漏洞利用工具☆450Jun 14, 2022Updated 3 years ago
- DVPNET 公开漏洞知识库☆94Jun 10, 2021Updated 4 years ago
- heapdump敏感信息查询工具,例如查找 spring heapdump中的密码明文,AK,SK等☆1,433May 21, 2024Updated last year
- HeapDump敏感信息提取工具☆1,629Dec 15, 2025Updated 2 months ago
- Bypass AV 用户添加☆169Dec 30, 2021Updated 4 years ago