lauritzh / auth-request-analyserLinks
This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attack capabilities for OAuth 2.0 and OpenID Connect 1.0 Authorization/Authentication Requests.
☆29Updated 2 years ago
Alternatives and similar repositories for auth-request-analyser
Users that are interested in auth-request-analyser are comparing it to the libraries listed below
Sorting:
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆33Updated 6 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated 2 years ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated last year
- Make better use of the embedded browser that comes by default with Burp☆45Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆21Updated 8 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- Dependency Confusion Security Testing Tool☆51Updated 3 years ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆53Updated last year
- ☆84Updated 3 months ago
- Unicode characters that will translate a single character to multiple characters in domain names or TLD's☆47Updated 10 months ago
- A set of open-source community scripts☆64Updated 11 months ago
- ☆40Updated 3 months ago
- Additional active scan checks for BURP☆28Updated 11 months ago
- ☆64Updated 2 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- Let's check if your target is vulnerable for client side prototype pollution.☆66Updated last year
- Monitoring the Cloud Landscape☆87Updated this week
- Security Advisories☆34Updated 2 months ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated 2 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated last week
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- spk aka spritzgebaeck: A small OSINT/Recon tool to find CIDRs that belong to a specific organization.☆84Updated 3 months ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated 2 years ago
- crtdumper is a Go application designed to interact directly with Certificate Transparency (CT) logs servers and extract domain names fro…☆29Updated last year
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆62Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Updated 8 months ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 4 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 7 months ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆79Updated last year