mobb-dev / bugsy
☆50Updated last week
Related projects: ⓘ
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆92Updated last year
- WEB-Wordlist-Generator creates related wordlists after scanning your web applications.☆41Updated 3 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆68Updated 8 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆54Updated last year
- NotSoCereal: A Deserialization exploit playground☆48Updated 2 years ago
- ☆70Updated 2 months ago
- ☆41Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆84Updated 7 months ago
- Unicode Security Toolkit☆25Updated last week
- A python3 script searching for secret on swaggerhub☆55Updated 2 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆71Updated 3 months ago
- ☆27Updated last year
- My talks...☆23Updated 11 months ago
- 🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯☆24Updated 11 months ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE☆52Updated 7 months ago
- ElasticSearch exploit and Pentesting guide for penetration tester☆22Updated last year
- ☆54Updated last year
- Apache Tomcat exploit and Pentesting guide for penetration tester☆51Updated 2 years ago
- Build OpenApi specs for your APIs from Burp's traffic using Levo.ai. Also detect the PII in your APIs.☆23Updated 2 months ago
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆73Updated 11 months ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆45Updated 6 months ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆80Updated 3 months ago
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆67Updated 2 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆63Updated last year
- ☆56Updated last month
- Security Advisories☆32Updated 10 months ago
- Analysis and management tools for an Open Asset Model database☆38Updated this week
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆52Updated last year
- ☆52Updated 4 months ago