nccgroup / HTTPSignatures

Related projects: ⓘ

• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 4 years ago
• ivision-research / burp-highlighter
  ☆22Updated 2 years ago
• quahac / burp-intruder-hashcat-maskprocessor
  ☆19Updated 3 years ago
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆38Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆72Updated 4 years ago
• vulnbe / burpsuite-copy-as-xmlhttprequest
  Copy as XMLHttpRequest BurpSuite extension
  ☆31Updated 3 years ago
• 10goto20 / seltzer
  A Burp Suite extension for headless, unattended scanning.
  ☆36Updated 4 years ago
• random-robbie / kube-scan
  Kubernetes Scanner
  ☆41Updated 2 years ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 3 years ago
• silentsignal / burp-pdml
  PDML importer for Burp Suite
  ☆28Updated 3 years ago
• vp777 / surferFTP
  SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
  ☆70Updated 3 years ago
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆51Updated 2 years ago
• CoreyD97 / BurpExtenderUtilities
  A collection of utilities to simplify the creation of Burp Suite plugins
  ☆22Updated 9 months ago
• twelvesec / JDSer-DComp
  A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.
  ☆24Updated 5 years ago
• wdahlenburg / CVESearch
  Query various sources for CVE proof-of-concepts
  ☆50Updated last year
• sahadnk72 / jecretz
  Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets
  ☆41Updated last year
• Static-Flow / DirectoryImporter
  This is a Burpsuite plugin built to enable you to import your directory bruteforcing results into burp for easy viewing later. This is an…
  ☆35Updated last year
• federicodotta / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆41Updated 4 years ago
• hoodoer / WP-XSS-Admin-Funcs
  JavaScript functions intended to be used as an XSS payload against a WordPress admin account.
  ☆50Updated 3 years ago
• irsdl / BurpTabEssentials
  This changes the style of Burp Suite's Repeater tabs to help the testers
  ☆28Updated 5 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆11Updated last year
• gquere / CVE-2020-7931
  Hacking Artifactory with server side template injection
  ☆50Updated 4 years ago
• irsdl / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆41Updated 6 years ago
• yashrs / safecopy
  Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…
  ☆16Updated 4 years ago
• nuncan / slurp
  The original slurp source
  ☆32Updated 5 years ago
• rekter0 / exploits
  ☆44Updated 2 years ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆42Updated 7 years ago
• anantshri / DS_Store_crawler_parser
  a parser + crawler for .DS_Store files exposed publically
  ☆53Updated last year
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆49Updated last year
• GKNSB / Lepus
  Subdomain finder
  ☆14Updated 2 months ago