ignis-sec / puffLinks
Clientside vulnerability / reflected xss fuzzer
☆150Updated last year
Alternatives and similar repositories for puff
Users that are interested in puff are comparing it to the libraries listed below
Sorting:
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- Searching for virtual hosts among non-resolvable domains☆88Updated 5 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- ASN reconnaissance script☆127Updated last year
- ☆67Updated 2 years ago
- A collection of code for interacting with API sources directly to improve your understanding of those services.☆65Updated 4 years ago
- ☆61Updated 10 months ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- Find subdomains and takeovers.☆85Updated 2 years ago
- Piper Burp Suite Extender plugin☆122Updated last year
- ☆76Updated 4 years ago
- Script to test open Akamai ARL vulnerability.☆71Updated 3 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- A simple remote scanner for Atlassian Jira☆121Updated 2 years ago
- ☆9Updated 5 years ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 8 months ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- A really simple utility to concate wordlists to a domain name - to pipe into your favourite resolver!☆87Updated 5 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆213Updated 6 years ago
- Urls de-duplication tool for better recon.☆141Updated 3 weeks ago
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Prototype pollution scanner using headless chrome☆218Updated 2 years ago
- Various Payload wordlists☆236Updated last month
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆96Updated 2 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- The project aims at creating target-specific wordlists for any web application that you are testing.☆66Updated 3 years ago
- List of fresh DNS resolvers updated daily☆108Updated 2 years ago
- A reverse whois tool based on Whoxy API.☆166Updated last year
- Burp Extension for easily creating Wordlists☆211Updated 3 years ago
- A script for installing private Burp Collaborator with free Let's Encrypt SSL-certificate☆210Updated 11 months ago