jackj07 / Response-Pattern-MatcherLinks
Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulnerable areas.
☆15Updated 2 years ago
Alternatives and similar repositories for Response-Pattern-Matcher
Users that are interested in Response-Pattern-Matcher are comparing it to the libraries listed below
Sorting:
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆65Updated 3 months ago
- #BugBounty #BugBounty Tools #WebDeveloper Tool☆38Updated 2 months ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆47Updated 4 years ago
- Wordlist to get files/ folders listed by the app that may expose passwords, sensitive file or folders☆22Updated 5 years ago
- ☆36Updated 6 months ago
- Compiles a list of major CDN and WAF subnets.☆66Updated this week
- A Burp extension to show the Collaborator client in a tab☆24Updated 2 years ago
- Burp extension to generate multi-step CSRF POC.☆30Updated 5 years ago
- Compiled dataset of Java deserialization CVEs☆62Updated 4 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆77Updated 4 years ago
- Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan☆42Updated 3 weeks ago
- Query various sources for CVE proof-of-concepts☆51Updated 2 years ago
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 3 years ago
- Hacking Artifactory with server side template injection☆51Updated 5 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆36Updated last year
- ☆37Updated 5 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Updated 4 years ago
- ☆45Updated 4 years ago
- Manual JavaScript Linting is a Bug☆49Updated 4 years ago
- A Python3 module to assist in fuzzing web applications☆57Updated last year
- dns rebind tool with custom scripts☆83Updated 2 years ago
- [CVE-2020-14882] Oracle WebLogic Server Authenticated Remote Code Execution (RCE)☆14Updated 4 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 5 years ago
- A compilation of network scanning strategies to find vulnerable devices☆73Updated 2 years ago
- Spring Boot Actuator (jolokia) XXE/RCE☆22Updated 6 years ago
- ☆64Updated 3 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆19Updated 3 years ago
- Authenticated SSRF in Grafana☆82Updated last year
- websocket-connection-smuggler☆68Updated 5 years ago
- ☆32Updated 6 years ago