Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulnerable areas.
☆15Aug 4, 2023Updated 2 years ago
Alternatives and similar repositories for Response-Pattern-Matcher
Users that are interested in Response-Pattern-Matcher are comparing it to the libraries listed below
Sorting:
- This changes the style of Burp Suite's Repeater tabs to help the testers☆29Jul 3, 2019Updated 6 years ago
- Monitor and prevent unexpected behavior of Java programs.☆14Jul 6, 2021Updated 4 years ago
- jre8u20 gadget☆34May 23, 2021Updated 4 years ago
- dankAlerts is powered by Sysmon and Memes. Would you notice if a suspicious process was recorded in the event log?☆18Jun 24, 2020Updated 5 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆10Mar 24, 2020Updated 5 years ago
- Automation for grabbing keys from a Linux host. Useful during red team exercises to quickly help assess what access to a Linux host can l…☆17May 7, 2021Updated 4 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆34Nov 17, 2018Updated 7 years ago
- Native Java serialization filter blacklist for common gadgets☆20Sep 12, 2019Updated 6 years ago
- Magento Security Scanner☆13Jan 10, 2022Updated 4 years ago
- An exotic service bruteforce tool.☆13Apr 12, 2025Updated 11 months ago
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by me☆18Aug 5, 2024Updated last year
- An Ansible role that runs Vulhub environments on a Linux system.☆21Oct 15, 2025Updated 5 months ago
- View screenshots as a slideshow over http☆15Mar 13, 2020Updated 6 years ago
- POC from TestANull for CVE-2021-28482 on Exchange Server☆46May 3, 2021Updated 4 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆36Mar 1, 2023Updated 3 years ago
- A bash script that automates the scanning of a target network for HTTP resources through XXE☆37Dec 2, 2020Updated 5 years ago
- Converts Text into Emojipasta using AngularJS and emojilib.☆17Jan 31, 2018Updated 8 years ago
- A tool for auditing medical devices and healthcare infrastructure☆22Dec 28, 2025Updated 2 months ago
- Burp Suite Extension useful to inspect UPnP security☆16Nov 9, 2021Updated 4 years ago
- Jboss_JMXInvokerServlet_Deserialization_RCE☆21Sep 3, 2019Updated 6 years ago
- Free and open-source medical device discovery and identification☆38Jul 16, 2022Updated 3 years ago
- ☆16Oct 24, 2018Updated 7 years ago
- log4j-patch 修改字节码实现补丁防御☆20Dec 10, 2021Updated 4 years ago
- undust is a URL pattern generator that helps uncover archived, backup, and temporary files left behind on web servers. Given a URL, it ge…☆53Jul 17, 2025Updated 8 months ago
- Burpsuite Extension for Jsmon☆23Feb 5, 2026Updated last month
- Docker Container for Scumblr (github.com/netflix/scumblr)☆14Jul 13, 2016Updated 9 years ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆14Feb 26, 2021Updated 5 years ago
- Cisco CallManager User Enumeration☆15Aug 16, 2022Updated 3 years ago
- Lightweight Python API for ThePirateBay☆18Dec 4, 2021Updated 4 years ago
- DNS and Target HTTP History Local Storage and Search☆63Feb 14, 2021Updated 5 years ago
- Add my own POC to test Visual Studio trick to run code when building☆22Jul 18, 2017Updated 8 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Nov 18, 2019Updated 6 years ago
- Web scan foundation framework☆23Nov 17, 2017Updated 8 years ago
- Burp Suite extension for JAX-RS☆65Mar 17, 2017Updated 9 years ago
- Continuous external monitoring and vulnerability scanning for organization assets☆15Jul 30, 2020Updated 5 years ago
- A code security platform based on fortify sca windows☆15Mar 6, 2019Updated 7 years ago
- ☆36Jan 4, 2026Updated 2 months ago
- Scanner to send specially crafted requests and catch callbacks of systems that are impacted by log4j log4shell vulnerability and to detec…☆12Feb 15, 2022Updated 4 years ago
- A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.☆19Jan 3, 2019Updated 7 years ago