一款支持检测web应用程序未授权访问缺陷的burp suite插件,可自定义配置检测字段以及返回包json数据分析
☆12Apr 22, 2024Updated last year
Alternatives and similar repositories for NoAuthScan
Users that are interested in NoAuthScan are comparing it to the libraries listed below
Sorting:
- Burp-plugin☆17Jul 18, 2024Updated last year
- Whale-ApiUse是burp插件,可以用来测试wx公众号,微信小程序,钉钉,企业微信等的接口,通过输入key和secret进行测试,之所以做这个首先这是一个练手项目,后续也会继续维护更新,如果有好的建议欢迎留言。其次由于现有的工具都要额外下载,用起来繁琐,所以我想着通…☆13Jan 7, 2024Updated 2 years ago
- 瞎越是一款 Burp Suite 的安全插件,主要用于测试 Web 越权、未授权的网络安全漏洞。☆11Jun 13, 2024Updated last year
- ☆112Mar 6, 2023Updated 2 years ago
- 本项目是一个以“实战为导向”的 XSS 漏洞练习靶场,覆盖反射型、存储型、DOM 型、SVG、CSP、框架注入、协议绕过等多种场景。页面样式统一,逻辑清晰,适合系统化学习与教学演示☆21Jan 10, 2026Updated last month
- Parsing 是一个 Chrome 插件,选择ai分析当前页面的Js代码,内置提示词,不再需要单拎js。以及信息收集功能,提升渗透测试效率。☆53Jan 28, 2026Updated last month
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- APIKit 是Burp Suite 的一个API接口扫描插件,该版本APIKit是对API-Security项目的APIKit1.0进行的二开,增加了扫描开关,避免直接打开burp乱扫被抓起来☆92Dec 19, 2025Updated 2 months ago
- CScan 是一个基于Go语言开发的网络空间资产搜索工具,支持多个主流网络空间搜索引擎:FOFA Hunter Quake,能够快速搜索IP、域名等资产信息。☆42Jan 16, 2025Updated last year
- Your subdomains are free for the taking - no API key, no mistaking! 🕺☆37Feb 27, 2023Updated 3 years ago
- 一款扫描js中敏感api的burp插件☆38Aug 30, 2023Updated 2 years ago
- Burp被动扫描流量转发插件☆84Jul 18, 2024Updated last year
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 2 years ago
- A FullC2 Framework TUI + Web UI That Focuses On Network Stressing☆14Aug 24, 2025Updated 6 months ago
- Burp extension to fuzz/brute force GenAI/LLM prompts for potential behvioural and Prompt Injection vulnerabilities.☆13Sep 3, 2025Updated 5 months ago
- ☆11Aug 25, 2018Updated 7 years ago
- Burpsuite验证码DOS攻击插件。☆19Oct 24, 2024Updated last year
- Active Directory share enumeration tool☆12Apr 28, 2025Updated 10 months ago
- Asset inventory of over 800 public bug bounty programs.☆12Jun 12, 2023Updated 2 years ago
- S-XIASQL 是一款专业的 Burp Suite SQL注入检测插件,能够自动化检测Web应用中的SQL注入漏洞。通过智能分析HTTP请求响应,快速识别潜在的SQL注入点,大幅提升渗透测试效率。☆37Feb 6, 2026Updated 3 weeks ago
- 一个既可主动,又可被动提取链接的burp插件☆45Mar 29, 2024Updated last year
- SpecOps is a Burp Suite extension that ingests an OpenAPI or Swagger spec and instantly builds a workbench to test every documented endpo…☆30Jan 18, 2026Updated last month
- I was searching for such resource to work as cheat sheet series and guide me through different attack scenarios for API attacks, didn’t f…☆15May 5, 2025Updated 9 months ago
- 一款集成了Nuclei模板管理、多空间引擎搜索的网络安全工具集。为安全研究人员提供高效的工作体验。☆22Feb 12, 2026Updated 2 weeks ago
- ☆12Apr 17, 2022Updated 3 years ago
- A security-first MCP server empowering AI agents to orchestrate Ghidra, Radare2, and YARA for automated reverse engineering.☆47Jan 21, 2026Updated last month
- A simple CDR software for disarming malicious contents contained in documents.☆10Nov 7, 2022Updated 3 years ago
- Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…☆20Feb 13, 2026Updated 2 weeks ago
- 资产测绘输出xlsx表格☆14Sep 10, 2024Updated last year
- 一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。☆13Mar 7, 2025Updated 11 months ago
- Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …☆25Jun 11, 2025Updated 8 months ago
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆41Feb 19, 2025Updated last year
- Recon tool for URLs discovery☆12Jun 19, 2024Updated last year
- SAPLAR - LFI & Path Traversal Scanner☆15Mar 11, 2025Updated 11 months ago
- MiniO verify interface sensitive information disclosure vulnerability (CVE-2023-28432)☆10Mar 24, 2023Updated 2 years ago
- Random Tips and Writeups.☆15Feb 21, 2019Updated 7 years ago
- Scanner for misconfigured DevSecOps or Security tools on internet like SonarQube, GoPhish etc.☆12Apr 4, 2025Updated 10 months ago
- ☆16Jan 23, 2026Updated last month
- Cobalt Strike 插件包,超级缝合怪...☆11Jul 11, 2025Updated 7 months ago