luke-goddard / LFI-Fuzzer-Burp-Suite
Local File Inclusion Burp-Suite Intruder Payload Generator Plugin
☆39Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for LFI-Fuzzer-Burp-Suite
- ☆47Updated 3 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆73Updated 4 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆35Updated 5 months ago
- Some Buffer Overflow Automation Scripts I'll be using between PWK labs and Exam!☆19Updated 4 years ago
- ☆33Updated 4 years ago
- A list of "secrets" from JWT sample code and readme files.☆51Updated 4 years ago
- Scanner for Cross-Site WebSocket Hijacking☆42Updated 4 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆62Updated 3 years ago
- Extract subdomains from rapiddns.io☆23Updated last year
- ☆26Updated 2 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆61Updated 4 years ago
- Get all possible href | src | url from target url or domain☆41Updated 4 years ago
- This repository is intended for sharing files/tools/tutorials..etc that related to eWPTXv1 from eLearnSecurity☆23Updated 4 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated last year
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- Nmap script to check vulnerability CVE-2021-21975☆28Updated 3 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 4 years ago
- ☆22Updated 2 years ago
- ☆36Updated 4 years ago
- A command-line tool for Cross-Site WebSocket Hijacking☆39Updated last year
- Bugbounty utility to store list of enumerated subdomains into an sqlite3 db [one liner style / Pipe and save]☆28Updated 3 years ago
- Atlassian Confluence CVE-2021-26084 one-liner mass checker☆30Updated 3 years ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 3 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Updated 3 years ago