mobb-dev / bugsy

Related projects: ⓘ

• The-Login / DNS-Analyzer
  A Burp Suite extension for finding DNS vulnerabilities in web applications!
  ☆92Updated last year
• OsmanKandemir / web-wordlist-generator
  WEB-Wordlist-Generator creates related wordlists after scanning your web applications.
  ☆41Updated 3 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆68Updated 8 months ago
• cyberaz0r / Burp-IISTildeEnumerationScanner
  Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
  ☆54Updated last year
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆48Updated 2 years ago
• JaimePolop / RExpository
  ☆70Updated 2 months ago
• carlospolop / Pastos
  ☆41Updated last year
• Moopinger / CLZero
  A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors
  ☆84Updated 7 months ago
• Acceis / unisec
  Unicode Security Toolkit
  ☆25Updated last week
• Liodeus / swaggerHole
  A python3 script searching for secret on swaggerhub
  ☆55Updated 2 years ago
• sinsinology / CVE-2024-4358
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆71Updated 3 months ago
• spyx / ParamAngler
  ☆27Updated last year
• snyff / Talks
  My talks...
  ☆23Updated 11 months ago
• haqqibrahim / Sling-Shot-R3con
  🚀 Sling Shot R3con: Automate Your Bug Bounty and Pentest Reconnaissance with Project Discovery tools 🎯
  ☆24Updated 11 months ago
• ExpLangcn / agartha
  a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …
  ☆48Updated 2 years ago
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆52Updated 7 months ago
• kh4sh3i / ElasticSearch-Pentesting
  ElasticSearch exploit and Pentesting guide for penetration tester
  ☆22Updated last year
• Rhynorater / rebindMultiA
  ☆54Updated last year
• kh4sh3i / Apache-Tomcat-Pentesting
  Apache Tomcat exploit and Pentesting guide for penetration tester
  ☆51Updated 2 years ago
• levoai / levoai-burp-extension
  Build OpenApi specs for your APIs from Burp's traffic using Levo.ai. Also detect the PII in your APIs.
  ☆23Updated 2 months ago
• ErikWynter / CVE-2023-22515-Scan
  Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence
  ☆73Updated 11 months ago
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆45Updated 6 months ago
• snyk / socketsleuth
  Burp Extension to add additional functionality for pentesting websocket based applications
  ☆80Updated 3 months ago
• kleiton0x00 / HTTP-Smuggling-Calculator
  Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.
  ☆67Updated 2 years ago
• devanshbatham / heaptruffle
  Mine URLs from Browser's Heap Snapshot for fun and profit
  ☆63Updated last year
• PortSwigger / splitting-the-email-atom
  ☆56Updated last month
• MrTuxracer / advisories
  Security Advisories
  ☆32Updated 10 months ago
• owasp-amass / oam-tools
  Analysis and management tools for an Open Asset Model database
  ☆38Updated this week
• seanmarpo / webjars-swagger-xss
  PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]
  ☆52Updated last year
• EasyRecon / wappaGo
  ☆52Updated 4 months ago