moeinfatehi / Backup-FinderLinks
A burp suite extension that reviews backup, old, temporary and unreferenced files on web server for sensitive information (OWASP WSTG-CONF-04, OTG-CONFIG-004)
☆161Updated last year
Alternatives and similar repositories for Backup-Finder
Users that are interested in Backup-Finder are comparing it to the libraries listed below
Sorting:
- A burp suite extension that enumerates infrastructure and application admin interfaces (OTG-CONFIG-005)☆122Updated 3 years ago
- A path-normalization pentesting tool.☆130Updated 2 years ago
- ☆68Updated 2 years ago
- Enumerate Subdomains Through Google Dorks (Bypassed Page Filter)☆125Updated 3 months ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆140Updated 2 years ago
- 403-bypass tool to bypass 403 responses.☆120Updated 2 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆110Updated 3 years ago
- Make URL path combinations using a wordlist☆173Updated 2 years ago
- Find related domains of a given domain.☆101Updated 2 years ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆79Updated last year
- ☆165Updated 2 years ago
- Find subdomains on GitLab.☆103Updated last year
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- Wordlist for web fuzzing, made from a variety of reliable sources including: result from my pentests, git.rip, ChatGPT, Lex, nuclei templ…☆101Updated 6 months ago
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆131Updated 3 years ago
- Advanced external automation on bug bounty programs by running the best set of tools to perform scanning and finding out vulnerabilities.☆102Updated 3 years ago
- BChecks collection for Burp Suite Professional☆101Updated last year
- Striping CDN & WAF IPs from a list of IP Addresses☆79Updated 4 months ago
- ☆82Updated 3 years ago
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆118Updated 2 years ago
- Describe how to use ffuf different options with examples☆89Updated 2 years ago
- The scripts I write to help me on my bug bounty hunting☆124Updated 3 years ago
- Prototype Pollution Scanner☆127Updated 4 years ago
- Inside403 is a powerful and versatile web security testing tool designed to assess the robustness of web pages and directories against 40…☆31Updated 2 years ago
- ☆89Updated 3 years ago
- Web API for nuclei and subfinder will help you automate your entire security testing workflow since you can host it anywhere and make it …☆61Updated 3 years ago
- A Burp Suite extension made to automate the process of finding reverse proxy path based SSRF.☆182Updated 3 years ago
- All Type of Payloads☆136Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆50Updated last month
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆245Updated 6 months ago