lwzSoviet / NoXss
Faster xss scanner,support reflected-xss and dom-xss
☆443Updated last year
Alternatives and similar repositories for NoXss:
Users that are interested in NoXss are comparing it to the libraries listed below
- SQLi-Hunter is a simple HTTP / HTTPS proxy server and a SQLMAP API wrapper that makes digging SQLi easy.☆430Updated 9 months ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆566Updated 4 years ago
- Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It suppo…☆374Updated 11 months ago
- HTTP file upload scanner for Burp Proxy☆485Updated last year
- CSRF Scanner☆556Updated 7 months ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆513Updated 4 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆261Updated 4 years ago
- Blind WAF identification tool☆642Updated 7 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆762Updated 10 months ago
- Here you can find mostly all disclosed h1 reports☆348Updated 3 years ago
- A multi threads web application source leak scanner☆385Updated 7 months ago
- A list of useful payloads for Web Application Security and Pentest/CTF☆299Updated 6 months ago
- Automated HTTP Request Repeating With Burp Suite☆863Updated 3 years ago
- 🎯 Fast CORS misconfiguration vulnerabilities scanner☆1,060Updated 3 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆649Updated last year
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆808Updated 7 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆603Updated 5 years ago
- an IIS shortname Scanner☆540Updated 2 years ago
- HackBar plugin for Burpsuite☆1,564Updated 3 years ago
- Redis 4.x/5.x RCE☆947Updated 3 years ago
- Another way to bypass WAF Cheat Sheet (draft)☆418Updated 6 years ago
- Quickly Search Large DNS Datasets☆584Updated 4 years ago
- MySQL fake server for read files of connected clients☆592Updated 7 years ago
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆669Updated last year
- A new generation of tool for discovering subdomains( ip , cdn and so on)☆710Updated 5 years ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆416Updated 3 months ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆780Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆580Updated last year
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆717Updated 5 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,589Updated 2 months ago