Alternatives and similar repositories for poracle

Users that are interested in poracle are comparing it to the libraries listed below

• GDSSecurity / PaddingOracleDemos

  View on GitHub
  ☆23Nov 18, 2015Updated 10 years ago
• mwielgoszewski / python-paddingoracle

  View on GitHub
  A portable, padding oracle exploit API
  ☆332Dec 1, 2022Updated 3 years ago
• anvilsecure / aws-sigv4

  View on GitHub
  Anvil Secure's Burp extension for signing AWS requests with SigV4
  ☆21Aug 20, 2025Updated 5 months ago
• t00sh / elf-poison

  View on GitHub
  Proof Of Concept for inserting code in ELF binaries.
  ☆25Mar 14, 2014Updated 11 years ago
• strozfriedberg / PadBuster

  View on GitHub
  Automated script for performing Padding Oracle attacks
  ☆804Jul 13, 2024Updated last year
• augustd / burp-suite-gwt-scan

  View on GitHub
  Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
  ☆13Sep 24, 2015Updated 10 years ago
• augustd / burp-suite-token-fetcher

  View on GitHub
  Burp Extender to add unique form tokens to scanner requests.
  ☆13Nov 5, 2024Updated last year
• SpiderLabs / vnc-auth

  View on GitHub
  NMAP NSE that enumerates VNC authentication types
  ☆17Dec 21, 2010Updated 15 years ago
• twelvesec / BearerAuthToken

  View on GitHub
  This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…
  ☆47Feb 27, 2019Updated 6 years ago
• daudmalik06 / WMB-Scrapper

  View on GitHub
  A small Php package to fetch archive url snapshots from archive.org. Using it you can fetch complete list of snapshot urls of any year or…
  ☆19Jun 20, 2021Updated 4 years ago
• NickstaDB / BaRMIe

  View on GitHub
  Java RMI enumeration and attack tool.
  ☆745Sep 28, 2017Updated 8 years ago
• NetSPI / JavaSerialKiller

  View on GitHub
  Burp extension to perform Java Deserialization Attacks
  ☆216Feb 2, 2024Updated 2 years ago
• nccgroup / jmxbf

  View on GitHub
  A brute force program to test weak accounts configured to access a JMX Registry
  ☆35Feb 1, 2017Updated 9 years ago
• iricartb / advanced-sql-injection-scanner

  View on GitHub
  Ivan Ricart Borges - Test for didactic purposes of web pages vulnerables to SQL injection using dbo database user with xp_cmdshell execut…
  ☆21May 15, 2021Updated 4 years ago
• LinkedInAttic / sometime

  View on GitHub
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Apr 18, 2017Updated 8 years ago
• TXOne-Networks / CuIDA

  View on GitHub
  BHUSA'24: Cuda-pretrained Inference Decompile Agent (CuIDA)
  ☆15Aug 8, 2024Updated last year
• CCSIR / WP-Plugins-Scanner

  View on GitHub
  Wordpress Plugins Scanner it's a semi-automatic white box pentesting/crawler app for WP plugins using RIPS from OWASP.
  ☆14Aug 6, 2013Updated 12 years ago
• maK- / Xssive

  View on GitHub
  Xss Vulnerability Demonstration framework.
  ☆12Aug 22, 2013Updated 12 years ago
• gustavorhm / ZapPenTester

  View on GitHub
  Command line tool that enables automated penetration testing in the Microsoft stack using OWASP ZAP
  ☆20Feb 22, 2015Updated 10 years ago
• lavalamp- / content-discovery-hit-lists

  View on GitHub
  This repository contains hit lists to use for web application content discovery.
  ☆11May 31, 2017Updated 8 years ago
• lowleveldesign / aspnetcrypter

  View on GitHub
  ☆19Jun 26, 2017Updated 8 years ago
• silentsignal / burp-uuid

  View on GitHub
  UUID issues for Burp Suite
  ☆53Jun 2, 2022Updated 3 years ago
• silentsignal / ActiveScan3Plus

  View on GitHub
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Jan 30, 2017Updated 9 years ago
• tduehr / buby

  View on GitHub
  A JRuby implementation of the BurpExtender interface for PortSwigger Burp Suite.
  ☆58May 1, 2015Updated 10 years ago
• disruptops / cred_scanner

  View on GitHub
  A simple file-based scanner to look for potential AWS access and secret keys in files
  ☆94Mar 18, 2024Updated last year
• mogwaisec / mjet

  View on GitHub
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆174Jul 21, 2016Updated 9 years ago
• mrfuzzy8 / Scripts

  View on GitHub
  ☆13Aug 18, 2016Updated 9 years ago
• synacktiv / mojarragadget

  View on GitHub
  ☆15Oct 25, 2021Updated 4 years ago
• retanoj / BurpMultiProxy

  View on GitHub
  ☆13Feb 17, 2016Updated 9 years ago
• doyensec / electronegativity-action

  View on GitHub
  The action integrates Electronegativity, a tool to identify misconfigurations and security anti-patterns in Electron applications, into G…
  ☆15Apr 15, 2023Updated 2 years ago
• nccgroup / kube-auto-analyzer

  View on GitHub
  Kubernetes Auto Analyzer
  ☆191Dec 11, 2019Updated 6 years ago
• 304GEEK / Scrape-DNS

  View on GitHub
  Searches for interesting cached DNS entries.
  ☆55May 15, 2014Updated 11 years ago
• mauro-g / snuck

  View on GitHub
  Automatic XSS filter bypass
  ☆90Aug 20, 2015Updated 10 years ago
• OpenSecurityResearch / flash-xdomain-xploit

  View on GitHub
  ActionScript Proof of Concept to perform cross-domain reads
  ☆16Aug 26, 2013Updated 12 years ago
• nccgroup / scenester

  View on GitHub
  A tool to visually snapshot a website by supplying multiple user-agent. Designed to aid in discovery of different entry points into an ap…
  ☆30May 6, 2016Updated 9 years ago
• BBVA / idsfree

  View on GitHub
  Launch hacking tests in cloud providers securely, isolated and without raise security alerts in the provider
  ☆16Dec 12, 2017Updated 8 years ago
• Meatballs1 / burp_jsbeautifier

  View on GitHub
  js-beautifier extension for Burp Suite
  ☆30Jun 24, 2013Updated 12 years ago
• Unity-Technologies / hot-fuzz

  View on GitHub
  HotFuzz is a fuzz testing utility that generates random data and sends it to a service's endpoint over HTTP or HTTPS based on a given fuz…
  ☆18Mar 14, 2021Updated 4 years ago
• nccgroup / Decoder-Improved

  View on GitHub
  Improved decoder for Burp Suite
  ☆138Aug 30, 2021Updated 4 years ago