Let's check if your target is vulnerable for client side prototype pollution.
☆65Jan 9, 2024Updated 2 years ago
Alternatives and similar repositories for proto-find
Users that are interested in proto-find are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A scanner/exploitation tool written in GO, which leverages client-side Prototype Pollution to XSS by exploiting known gadgets.☆518Jun 22, 2022Updated 3 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆41Aug 12, 2023Updated 2 years ago
- A Multi-Processing Tool for collecting and extracting information to an Excel file from a Burp Suite output file.☆10Apr 8, 2024Updated 2 years ago
- Burp extension to create target specific and tailored wordlist from burp history.☆258Dec 8, 2021Updated 4 years ago
- Enhanced 403 bypass header☆21Sep 12, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆149Dec 23, 2022Updated 3 years ago
- ☆95Sep 18, 2021Updated 4 years ago
- A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues☆375Jul 25, 2023Updated 2 years ago
- ☆82Mar 26, 2024Updated 2 years ago
- Detects request smuggling via HTTP/2 downgrades.☆94Jul 30, 2022Updated 3 years ago
- Client-Side Prototype Pollution Tools☆88Sep 21, 2021Updated 4 years ago
- GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations☆410Dec 24, 2022Updated 3 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Dec 4, 2021Updated 4 years ago
- Jeeves SQLI Finder☆216May 13, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆36May 14, 2022Updated 3 years ago
- Responser☆55Apr 18, 2022Updated 3 years ago
- A Security Tool for Enumerating WebSockets☆370Jan 10, 2022Updated 4 years ago
- TProx is a fast reverse proxy path traversal detector and directory bruteforcer.☆30Sep 16, 2021Updated 4 years ago
- Piper Burp Suite Extender plugin☆130Jan 14, 2026Updated 3 months ago
- Detailed information about API key / OAuth token (Description, Request, Response, Regex, Example)☆289Sep 26, 2023Updated 2 years ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆428Apr 8, 2026Updated last week
- ☆27Mar 18, 2020Updated 6 years ago
- huntr.dev public disclosures/hacktivity watcher☆17Nov 5, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- ☆18Apr 7, 2022Updated 4 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆295Sep 22, 2024Updated last year
- WordPress Plugin Update Confusion☆67Dec 7, 2021Updated 4 years ago
- Find endpoints on GitHub.☆219Mar 28, 2023Updated 3 years ago
- A Broken-URL Checker☆83Nov 2, 2017Updated 8 years ago
- queue that can be used like buffered channel with any capacity☆10Nov 24, 2024Updated last year
- clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerabil…☆99Dec 22, 2022Updated 3 years ago
- Prototype Pollution Scanner☆140Apr 11, 2021Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Find subdomains on GitLab.☆108Apr 28, 2024Updated last year
- User-Agent , X-Forwarded-For and Referer SQLI Fuzzer☆384May 19, 2023Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆202Aug 5, 2024Updated last year
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Nov 8, 2021Updated 4 years ago
- Analyze Content-Security-Policy header of a given URL.☆33Jan 10, 2024Updated 2 years ago
- Penetration Testing Methodology - short notes☆11May 30, 2015Updated 10 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆91May 2, 2024Updated last year