ignis-sec / puffLinks
Clientside vulnerability / reflected xss fuzzer
☆150Updated 2 years ago
Alternatives and similar repositories for puff
Users that are interested in puff are comparing it to the libraries listed below
Sorting:
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 4 years ago
- ☆76Updated 4 years ago
- Searching for virtual hosts among non-resolvable domains☆88Updated 5 years ago
- ASN reconnaissance script☆129Updated last year
- ☆67Updated 2 years ago
- Find subdomains and takeovers.☆85Updated 2 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆210Updated last year
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆215Updated 6 years ago
- ☆61Updated last year
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆88Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 5 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- FockCache - Minimalized Test Cache Poisoning☆110Updated 5 years ago
- Takeover subdomains using AWS dangling elastic ips and have a working POC for Subdomain Takeover.☆92Updated last month
- Misc bounty and vulndisc things☆86Updated 4 years ago
- Suite of programs meant to aid in bug hunting and security assessments☆77Updated 5 years ago
- DNS and Target HTTP History Local Storage and Search☆64Updated 4 years ago
- Custom scripts for the PIPER Burp extensions.☆98Updated last year
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 10 months ago
- You can read the writeup on this script here☆193Updated 3 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Bucky (An automatic S3 bucket discovery tool)☆197Updated 3 years ago
- ☆194Updated 6 years ago
- Prototype pollution scanner using headless chrome☆220Updated 3 years ago