ignis-sec / puff
Clientside vulnerability / reflected xss fuzzer
☆151Updated last year
Related projects: ⓘ
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- ☆99Updated this week
- ☆64Updated last year
- Searching for virtual hosts among non-resolvable domains☆86Updated 4 years ago
- ☆82Updated this week
- Prototype pollution scanner using headless chrome☆196Updated 2 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆105Updated 11 months ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆204Updated 2 months ago
- A combined wordlists for files and directory discovery☆115Updated 3 years ago
- Find subdomains and takeovers.☆81Updated last year
- Urls de-duplication tool for better recon.☆135Updated 2 months ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆82Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 3 years ago
- ☆76Updated 3 years ago
- A tool to perform permutations, mutations and alteration of subdomains in golang.☆156Updated 9 months ago
- Various Payload wordlists☆233Updated 4 years ago
- Prototype Pollution Scanner☆99Updated 3 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆84Updated 4 years ago
- List of fresh DNS resolvers updated daily☆107Updated last year
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆93Updated 3 years ago
- A permutation generation tool written in golang☆206Updated 5 years ago
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆94Updated 2 years ago
- CRLF and open redirect fuzzer☆108Updated 3 years ago
- Generates target specific word lists for Fuzzing with fuff☆107Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆78Updated last year
- ☆20Updated last year
- ☆60Updated last month
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆102Updated 4 years ago
- Awesome XSS Payloads☆84Updated 8 years ago