mpgn / heartbleed-PoC
Hearbleed exploit to retrieve sensitive information CVE-2014-0160
☆78Updated 3 years ago
Related projects: ⓘ
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆82Updated 2 years ago
- subdomain bruteforce list☆96Updated 2 years ago
- SHELLING - a comprehensive OS command injection payload generator☆104Updated 5 years ago
- A collection of scripts to extend Burp Suite☆138Updated 5 years ago
- XSS Hunter Burp Plugin☆148Updated 6 years ago
- Proof of concept for CVE-2020-5902☆72Updated 4 years ago
- Burp Suite extension to discover assets from HTTP response.☆217Updated 3 years ago
- Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for…☆142Updated 3 years ago
- ☆119Updated 7 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.☆136Updated 4 years ago
- List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.☆81Updated 6 years ago
- ☆45Updated this week
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆149Updated 3 years ago
- Burp Bounty is a extension of Burp Suite that improve an active and passive scanner by yourself. This extension requires Burp Suite Pro.☆69Updated 2 years ago
- POC Exploit for Apache Tomcat 7.0.x CVE-2017-12615 PUT JSP vulnerability.☆112Updated last year
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearch☆210Updated 2 years ago
- The Cleveridge Subdomain Scanner finds subdomains of a given domain.☆36Updated 4 years ago
- Payloads for CRLF Injection☆210Updated 2 years ago
- A Python script to parse net blocks & domain names from SPF record☆81Updated 4 years ago
- ☆127Updated 6 years ago
- A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…☆130Updated last year
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆153Updated last year
- A Burp Extension designed to identify argument injection vulnerabilities.☆115Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆60Updated 2 years ago
- Simple Server Side Request Forgery services enumeration tool.☆54Updated 6 years ago
- Fuzzing for LFI using Burpsuite☆58Updated 7 years ago
- CVE-2019-19781 - Remote Code Execution on Citrix ADC Netscaler exploit☆155Updated 3 years ago
- Simple "postMessage logger" Chrome extension☆92Updated 4 years ago
- This repository contains all the material from the talk "Practical recon techniques for bug hunters & pentesters" given at Bugcrowd Level…☆60Updated 5 years ago
- Hacked together script for feeding urls into Burp's Sitemap☆89Updated last year