lauritzh / auth-request-analyserLinks
This Chromium extensions aims at supporting the analysis of single sign-on implementations, by offering semi-automated analysis and attack capabilities for OAuth 2.0 and OpenID Connect 1.0 Authorization/Authentication Requests.
☆28Updated last year
Alternatives and similar repositories for auth-request-analyser
Users that are interested in auth-request-analyser are comparing it to the libraries listed below
Sorting:
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- Make better use of the embedded browser that comes by default with Burp☆42Updated last year
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 4 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Updated 8 months ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 9 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 11 months ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆55Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆31Updated 2 years ago
- Prototype Pollution exploits collection☆34Updated 3 years ago
- BOR - Break On Request, is a burp extension that provides a custom context menu for marking requests to be stopped by the interceptor wit…☆13Updated 2 years ago
- An intentionally-vulnerable application for demonstrating the hazards of SpEL expression composition☆28Updated 7 years ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 2 weeks ago
- Bcheck scripts for Burp☆28Updated 9 months ago
- Dependency Confusion Security Testing Tool☆47Updated 2 years ago
- ☆63Updated 2 years ago
- vīlicus is a bug bounty api dashboard☆41Updated last year
- ☆16Updated 3 years ago
- Proof of Concepts for unsafe deserialization in Ruby☆16Updated 7 months ago
- ☆18Updated 2 months ago
- BurpSuite extension to convert requests into bcheck scripts☆32Updated last year
- A wrapper around grep, to help you grep for things! - Improved version of gf by @tomnomnom.☆64Updated last year
- A collection of my Semgrep rules☆49Updated last year
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆32Updated 2 years ago
- ☆26Updated 2 years ago
- A set of open-source community scripts☆61Updated 7 months ago
- ☆36Updated last month