hvqzao / liffy

Related projects ⓘ

Alternatives and complementary repositories for liffy

• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆135Updated 3 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• codewatchorg / sqlipy
  SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.
  ☆253Updated 5 months ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆131Updated last year
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆201Updated 9 months ago
• nashcontrol / bounty-monitor
  Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …
  ☆220Updated last year
• JGillam / burp-paramalyzer
  Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.
  ☆154Updated 2 years ago
• sethsec / crossdomain-exploitation-framework
  Everything you need to exploit overly permissive crossdomain.xml files
  ☆87Updated 10 years ago
• Meatballs1 / burp-extensions
  Burp Suite Extensions
  ☆126Updated 11 years ago
• appsecco / spaces-finder
  A tool to hunt for publicly accessible DigitalOcean Spaces
  ☆154Updated 4 years ago
• j0bin / Pentest-Resources
  ☆120Updated 7 years ago
• unix-ninja / shellfire
  An exploitation shell focusing on exploiting command injection vulnerabilities, eg., LFI, RFI, SSTI, etc.
  ☆167Updated 9 months ago
• devsecboy / DomainRecon
  Based on URL and Organization Name, collect the IP Ranges, subdomains using various tools like Amass, subfinder, etc.. And check for upho…
  ☆154Updated 6 months ago
• Plazmaz / Sublist3r
  Fast subdomains enumeration tool for penetration testers
  ☆117Updated 5 years ago
• dobin / BurpSentinel
  GUI Burp Plugin to ease discovering of security holes in web applications
  ☆147Updated 7 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated last month
• vulnersCom / burp-Dirbuster
  Dirbuster plugin for Burp Suite
  ☆70Updated 7 years ago
• JGillam / burp-co2
  A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
  ☆151Updated 9 months ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆128Updated 4 years ago
• cujanovic / subdomain-bruteforce-list
  subdomain bruteforce list
  ☆98Updated last month
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• AonCyberLabs / xxe-recursive-download
  ☆227Updated 9 years ago
• lanjelot / albatar
  Albatar is a SQLi exploitation framework in Python
  ☆132Updated 3 years ago
• EdOverflow / megplus
  Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
  ☆302Updated 6 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆187Updated 2 years ago
• pathetiq / BurpSmartBuster
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆383Updated 4 years ago
• reider-roque / pentest-tools
  Penetration testing scripts
  ☆143Updated 6 years ago