kleiton0x00 / HTTP-Smuggling-CalculatorView external linksLinks
Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
☆73Mar 12, 2022Updated 3 years ago
Alternatives and similar repositories for HTTP-Smuggling-Calculator
Users that are interested in HTTP-Smuggling-Calculator are comparing it to the libraries listed below
Sorting:
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Aug 18, 2020Updated 5 years ago
- ☆16Oct 30, 2022Updated 3 years ago
- tool that generates bypasses for open redirects☆52Apr 18, 2022Updated 3 years ago
- A Sublime Text plugin that allows for Nmap syntax highlighting☆13Sep 14, 2024Updated last year
- XSScope is one of the most powerful and advanced GUI Framework for Modern Browser exploitation via XSS.☆315Jun 1, 2022Updated 3 years ago
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆519Jun 22, 2022Updated 3 years ago
- A one liner Bash command which finds CORS in every possible endpoint.☆149Jan 1, 2021Updated 5 years ago
- Nuclei is a fast tool for configurable targeted vulnerability scanning based on templates offering massive extensibility and ease of use.☆13Aug 4, 2025Updated 6 months ago
- ☆160Jan 7, 2022Updated 4 years ago
- Extract domains/subdomains/FQDNs from files and URLs☆19Jun 30, 2020Updated 5 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆175Oct 26, 2024Updated last year
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆280Feb 11, 2021Updated 5 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆25Feb 11, 2023Updated 3 years ago
- Make exploiting race conditions in web applications highly efficient and ease-of-use.☆27Jun 18, 2025Updated 7 months ago
- A collection of simple tools and poc-builders☆39Jul 22, 2025Updated 6 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆132Jan 8, 2022Updated 4 years ago
- ☆12Jan 30, 2025Updated last year
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆28Apr 12, 2020Updated 5 years ago
- ☆172Nov 20, 2025Updated 2 months ago
- whoareyou is a tool to find the underlying technology/software used in a list of websites passed through stdin (using Wappalyzer dataset)☆32Jun 15, 2020Updated 5 years ago
- Fleex makes it easy to create multiple VPS on cloud providers and use them to distribute workloads.☆265Feb 5, 2026Updated last week
- A tool for inspecting and analyzing mobile application storage files.☆49May 15, 2025Updated 8 months ago
- Some of the gf patterns which i use☆45Jan 19, 2022Updated 4 years ago
- ☆20Oct 7, 2013Updated 12 years ago
- Another Portable Executable files analysing stuff☆21May 28, 2011Updated 14 years ago
- GraphQL automated security testing toolkit☆332Feb 20, 2024Updated last year
- Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic lo…☆270Jan 18, 2023Updated 3 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- This extension replaces the default repeater tab name with the URL path of the repeater request.☆24Sep 3, 2021Updated 4 years ago
- My nots from Web application Hacker's Handbook☆18Nov 22, 2021Updated 4 years ago
- Filter and enrich a list of subdomains by level☆210Sep 25, 2023Updated 2 years ago
- Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.☆78Dec 30, 2021Updated 4 years ago
- Useful "Match and Replace" burpsuite rules☆362Sep 26, 2023Updated 2 years ago
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Apr 3, 2023Updated 2 years ago
- Eliminate dangling elastic IPs by performing analysis on your resources within all your AWS accounts.☆277Sep 20, 2024Updated last year
- Fuzz every path with goky☆15Jan 4, 2024Updated 2 years ago
- Labs from our workshop "Demystifying the server-side".☆17May 30, 2022Updated 3 years ago
- A list of "secrets" from JWT sample code and readme files.☆57Oct 28, 2020Updated 5 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆261Oct 16, 2022Updated 3 years ago