incredibleindishell / SSRF_Vulnerable_Lab

Related projects ⓘ

Alternatives and complementary repositories for SSRF_Vulnerable_Lab

• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆542Updated last year
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆611Updated 9 months ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• cujanovic / Open-Redirect-Payloads
  Open Redirect Payloads
  ☆583Updated last month
• mzfr / liffy
  Local file inclusion exploitation tool
  ☆790Updated last year
• ghsec / webHunt
  Web App bug hunting
  ☆553Updated 5 months ago
• payloadbox / open-redirect-payload-list
  🎯 Open Redirect Payload List
  ☆533Updated 4 months ago
• lc / subjs
  Fetches javascript file from a list of URLS or subdomains.
  ☆739Updated last year
• appsecco / the-art-of-subdomain-enumeration
  This repository contains all the supplement material for the book "The art of sub-domain enumeration"
  ☆639Updated 5 years ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆374Updated last year
• jdonsec / AllThingsSSRF
  This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
  ☆1,225Updated 3 years ago
• chrislockard / api_wordlist
  A wordlist of API names for web application assessments
  ☆760Updated last year
• payloadbox / rfi-lfi-payload-list
  🎯 RFI/LFI Payload List
  ☆538Updated 4 months ago
• assetnote / blind-ssrf-chains
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆804Updated 2 years ago
• ksharinarayanan / SSRFire
  An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects
  ☆944Updated 2 years ago
• wagiro / BurpBounty
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…
  ☆1,680Updated 6 months ago
• capt-meelo / LazyRecon
  An automated approach to performing recon for bug bounty hunting and penetration testing.
  ☆442Updated 4 years ago
• 1ndianl33t / Gf-Patterns
  GF Paterns For (ssrf,RCE,Lfi,sqli,ssti,idor,url redirection,debug_logic, interesting Subs) parameters grep
  ☆1,218Updated 2 months ago
• timip / OSWE
  OSWE Preparation
  ☆568Updated 2 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆524Updated 6 years ago
• payloadbox / ssti-payloads
  🎯 Server Side Template Injection Payloads
  ☆602Updated 4 months ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆482Updated 10 months ago
• PortSwigger / xss-cheatsheet-data
  This repository contains all the XSS cheatsheet data to allow contributions from the community.
  ☆405Updated this week
• ayoubfathi / leaky-paths
  A collection of special paths linked to common sensitive APIs, devops internals, frameworks conf, known misconfigurations, juicy APIs ..e…
  ☆935Updated 4 months ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆330Updated 4 years ago
• honoki / bbrf-client
  The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices
  ☆615Updated this week
• 0xdekster / ReconNote
  Web Application Security Automation Framework which recons the target for various assets to maximize the attack surface for security prof…
  ☆412Updated 3 years ago
• random-robbie / keywords
  ☆354Updated 2 years ago
• tomnomnom / qsreplace
  Accept URLs on stdin, replace all query string values with a user-supplied value
  ☆767Updated last year
• KathanP19 / JSFScan.sh
  Automation for javascript recon in bug bounty.
  ☆900Updated last year