intruder-io / param-miner
Fork of https://github.com/PortSwigger/param-miner for header smuggling research
☆12Updated 3 years ago
Alternatives and similar repositories for param-miner:
Users that are interested in param-miner are comparing it to the libraries listed below
- Burp Suite extension to help make Graphql request more readable☆31Updated 7 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing☆19Updated 3 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- AWS Security Checks☆37Updated 7 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆46Updated 6 years ago
- Swiftly search FDNS datasets from Rapid7 Open Data☆21Updated 2 years ago
- Kubernetes Scanner☆40Updated 3 years ago
- CircleCI log and security configuration automations☆22Updated 4 years ago
- ☆10Updated 6 years ago
- bountytpl – template generator cli. By using a template similar to the ones for Template Generator (https://github.com/fransr/template-ge…☆46Updated 5 years ago
- Burp extension to generate multi-step CSRF POC.☆29Updated 5 years ago
- Tool to get the top android apps for bug bounty purpose☆17Updated 4 years ago
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- A Go scraper that validates security.txt files and outputs them in the disclose.io JSON format.☆20Updated 3 years ago
- List of special metadata IPs used in cloud services☆11Updated 5 years ago
- A tool for fetching archived URLs (to be rewritten in Go).☆40Updated 6 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆38Updated 4 years ago
- ☆22Updated 3 years ago
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Updated 2 years ago
- This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.☆12Updated 2 years ago
- ☆10Updated 3 years ago
- This is a set of tips and reminders for pentesting processes and scripts/programs. Initially for personal use, but if anyone else finds t…☆52Updated 5 years ago
- A Mozilla Firefox extension which allows quick access to your google-dorking result☆19Updated 4 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆17Updated 4 years ago