laconicwolf / Burp-API-Scripts
A collection of scripts used to interact with the Burp Rest API
☆51Updated 5 years ago
Related projects: ⓘ
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 5 years ago
- PHP tool to test XSS☆23Updated 4 years ago
- Various tools for managing bug bounty recon and exploration.☆46Updated last year
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- OWASP Skanda - SSRF Exploitation Framework☆36Updated 11 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 6 years ago
- This burpsuite extender provides a solution on testing Enterprise applications that involve security Authorization tokens into every HTTP…☆45Updated 5 years ago
- AWS S3 Bucket/Object Finder☆25Updated 6 years ago
- ☆29Updated 6 years ago
- This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…☆35Updated last year
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 6 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 5 years ago
- ☆18Updated 7 years ago
- ☆31Updated 5 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 5 years ago
- This repository contains the POC of an exploit for node-jose < 0.11.0☆25Updated last year
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 5 years ago
- My notebook for OSCP Lab☆25Updated 7 years ago
- Simple tool based on sslyze to scan large scope and provide SSL/TLS vulnerabilities☆52Updated 4 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated 7 months ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- WhiteBox CMS analysis☆68Updated last year
- Burp extension to passively scan for applications revealing software version numbers☆30Updated 3 months ago
- Scan for open S3 buckets and dump☆35Updated 6 years ago
- A simple tool to decloak/expose the bucket name behind a domain.☆22Updated 4 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆65Updated 4 years ago
- This is a Burp extension for adding additional payloads to active scanner that require out-of-band validation. Works great with XSSHunter☆20Updated 7 years ago
- ☆22Updated this week