一款支持检测web应用程序未授权访问缺陷的burp suite插件,可自定义配置检测字段以及返回包json数据分析
☆12Apr 22, 2024Updated last year
Alternatives and similar repositories for NoAuthScan
Users that are interested in NoAuthScan are comparing it to the libraries listed below
Sorting:
- Burp-plugin☆17Jul 18, 2024Updated last year
- Whale-ApiUse是burp插件,可以用来测试wx公众号,微信小程序,钉钉,企业微信等的接口,通过输入key和secret进行测试,之所以做这个首先这是一个练手项目,后续也会继续维护更新,如果有好的建议欢迎留言。其次由于现有的工具都要额外下载,用起来繁琐,所以我想着通…☆13Jan 7, 2024Updated 2 years ago
- 瞎越是一款 Burp Suite 的安全插件,主要用于测试 Web 越权、未授权的网络安全漏洞。☆11Jun 13, 2024Updated last year
- ☆112Mar 6, 2023Updated 3 years ago
- 一个既可主动,又可被动提取链接的burp插件☆45Mar 29, 2024Updated last year
- Asset inventory of over 800 public bug bounty programs.☆12Jun 12, 2023Updated 2 years ago
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- Burp被动扫描流量转发插件☆84Jul 18, 2024Updated last year
- awd attack framework,Django + Mysql☆16Feb 8, 2025Updated last year
- 这是一个WebShell收集项目☆12Nov 24, 2017Updated 8 years ago
- Jasmin Ransomware 是一款用于模拟真实勒索软件攻�击的高级红队工具(WannaCry Clone)。Jasmin 帮助安全研究人员克服外部攻击的风险。☆16Nov 11, 2022Updated 3 years ago
- ARL灯塔源码部署,二开基础环境、增强版、优化众多功能,新增钉钉——》知识库的自动化推送,优化扫描精度~☆44Updated this week
- 基于Golang实现的简易DDOS攻击示例(仅供测试,请勿用于非法用途)☆15Mar 21, 2019Updated 6 years ago
- Parsing 是一个 Chrome 插件,选择ai分析当前页面的Js代码,内置提示词,不再需要单拎js。以及信息收集功能,提升渗透测试效率。☆54Jan 28, 2026Updated last month
- 一款扫描js中敏感api的burp插件☆38Aug 30, 2023Updated 2 years ago
- MiniO verify interface sensitive information disclosure vulnerability (CVE-2023-28432)☆10Mar 24, 2023Updated 2 years ago
- APIKit 是Burp Suite 的一个API接口扫描插件,该版本APIKit是对API-Security项目的APIKit1.0进行的二开,增加了扫描开关,避免直接打开burp乱扫被抓起来☆92Dec 19, 2025Updated 3 months ago
- Your subdomains are free for the taking - no API key, no mistaking! 🕺☆37Feb 27, 2023Updated 3 years ago
- JeecgBoot综合漏洞利用工具版本更新☆17Feb 18, 2025Updated last year
- 应急响应、取证过程中的Windows日志辅助分析工具☆52Mar 21, 2024Updated last year
- 网络安全应急响应信息收集利器 - Eagle_Eye:您的终端信息自动收集专家☆14Jul 11, 2024Updated last year
- Caido's passive workflow to find potential leaked secrets, PII, and sensitive fields.☆21Jan 13, 2025Updated last year
- 一个重庆高校在线开放课程平台自动化工具包。☆11Updated this week
- cryptocrack 是一个用Python编写的密码自动破解框架,在basecrack的基础上进行功能完善,期望解决CTF中Crypto部分题型☆14Jan 6, 2023Updated 3 years ago
- 🔒 越权测试助手 (Privilege Escalation Testing Assistant)☆16Mar 28, 2025Updated 11 months ago
- 一款支持检测host头攻击的burp suite插件☆53Feb 21, 2024Updated 2 years ago
- xia_Yue 插件修改版,瞎越修改版,修复中文重放乱码,添加请求行越权测试,一键导出越权url,允许重复url测试等功能☆65Jan 5, 2026Updated 2 months ago
- ARL 2.6.2-docker国内环境快速部署☆16Sep 25, 2024Updated last year
- 一款ctf工具,包含rsa模板解密,misc方向功能,一些解码功能,致力于帮助ctf比赛中减少繁琐步骤,快速解答模板题☆15Mar 18, 2025Updated last year
- 存储桶遍历漏洞利用脚本☆151Jul 19, 2023Updated 2 years ago
- Burp Suite's extension to scan and crawl Single Page Applications☆107Apr 14, 2023Updated 2 years ago
- Stay on the beat with SubHound - receive notifications for new subdomains on Telegram and Discord! 🐶🎵☆17Jun 4, 2023Updated 2 years ago
- HW2023中安全厂和超级大厂的大爆炸☆62Aug 17, 2023Updated 2 years ago
- About Recon Tools,Methodology and writeups☆18Dec 16, 2023Updated 2 years ago
- A simple utility to generate domain names with all possible TLDs☆23Feb 3, 2023Updated 3 years ago
- 基于 BurpSuite 新版 MontoyaAPI 的 SSRF 漏洞自动探测插件☆155Mar 2, 2025Updated last year
- CTF misc usb键盘,鼠标,数位板流量分析脚本,图片宽高修复脚本☆14Jan 19, 2024Updated 2 years ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- A simple python script to download Voorivex Academy videos☆18May 17, 2024Updated last year