Alternatives and similar repositories for burp-wildcard:

Users that are interested in burp-wildcard are comparing it to the libraries listed below

• mhaskar / XMLDecoder-payload-generator
  A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec
  ☆149Updated 4 years ago
• codewhitesec / ColdFusionPwn
  Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12
  ☆94Updated 2 years ago
• kiks7 / rusty_joomla_rce
  Rusty Joomla RCE Exploit
  ☆69Updated 2 years ago
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆108Updated 5 years ago
• LandGrey / flink-unauth-rce
  exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts
  ☆90Updated 5 years ago
• xawdxawdx / sentrySSRF
  Tool to searching sentry config on page or in javascript files and check blind SSRF
  ☆70Updated 9 months ago
• 0xzmz / burpsuite_jsapi
  A BurpSuite extension written by Python,used to find API interface in JS file.
  ☆114Updated 2 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆102Updated 5 years ago
• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆99Updated 3 years ago
• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆151Updated 5 years ago
• jas502n / SpringBoot_Actuator_RCE
  SpringBoot_Actuator_RCE
  ☆97Updated 4 years ago
• wuppp / shiro_rce_exp
  Shiro RCE (Padding Oracle Attack)
  ☆142Updated 5 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆121Updated 6 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆106Updated 5 years ago
• zer0yu / BugBounty
  web fuzzing && bug hunter
  ☆60Updated 3 years ago
• PortSwigger / authz
  ☆106Updated 8 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆61Updated 6 years ago
• theLSA / burp-sensitive-param-extractor
  burpsuite extension for check and extract sensitive request parameter
  ☆112Updated 4 years ago
• LandGrey / xxe-ftp-server
  xxe oob receive file via web and ftp server
  ☆96Updated 5 years ago
• aRe00t / rce-over-spark
  Remote Command Execution Over Spark
  ☆96Updated 7 years ago
• Y4er / CVE-2020-14645
  Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()
  ☆79Updated 4 years ago
• QdghJ / burp_data_collector
  A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
  ☆91Updated 4 years ago
• black-mirror / Weblogic
  Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行
  ☆68Updated 5 years ago
• theLSA / f5-bigip-rce-cve-2020-5902
  F5 BIG-IP RCE CVE-2020-5902 automatic check tool
  ☆62Updated 4 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆80Updated 4 years ago
• random-robbie / cve-2020-0688
  cve-2020-0688
  ☆163Updated 5 years ago
• potats0 / cve_2020_14644
  ☆69Updated 4 years ago
• ezelf / f5_cookieLeaks
  Decode the cookies set by balancer F5, and disclousure all pool ip
  ☆77Updated 5 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆50Updated 3 years ago
• CHYbeta / OddProxyDemo
  ☆186Updated 10 months ago