nccgroup / requests-racer
Small Python library that makes it easy to exploit race conditions in web apps with Requests.
β159Updated last year
Alternatives and similar repositories for requests-racer:
Users that are interested in requests-racer are comparing it to the libraries listed below
- Automatic tool for DNS rebinding-based SSRF attacksβ299Updated 4 years ago
- π΄ββ οΈ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files π΄ββ οΈβ199Updated 6 years ago
- A natural evolution of Burp Suite's Repeater toolβ197Updated last year
- Predict Mongo ObjectIdsβ130Updated 6 years ago
- find hardcoded strings from source codeβ277Updated 3 years ago
- Piper Burp Suite Extender pluginβ120Updated last year
- Everything you need about Burp Extension Generationβ153Updated 2 years ago
- Code execution via Python package installation.β170Updated 6 years ago
- notes and code on past CTFsβ103Updated 3 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.β259Updated 3 years ago
- Race Condition frameworkβ269Updated 2 years ago
- Tool for catching and logging different types of requests.β220Updated 4 years ago
- IPFuscator - A tool to automatically generate alternative IP representationsβ365Updated last year
- β173Updated 3 years ago
- Payloads for CRLF Injectionβ223Updated 6 months ago
- SSRF testing toolβ244Updated 2 years ago
- A simple SSRF-testing sheriff written in Goβ326Updated 5 months ago
- A lab to play with authentication and authorisation problemsβ95Updated 2 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes β¦β258Updated 2 years ago
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cerβ¦β286Updated 3 months ago
- β148Updated 3 years ago
- A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filteringβ210Updated 4 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.β155Updated 2 years ago
- Simple python script to extract unsafe functions from php projectsβ199Updated 7 years ago
- [A]ndroid [A]pplication [P]entest [G]uideβ124Updated 5 years ago
- Various Payload wordlistsβ235Updated 4 years ago
- A cheat sheet for attacking SQLite via SQLiβ99Updated 9 years ago
- Notes/Tools for pentestingβ82Updated last year
- Evenly distributes scanner load across targetsβ85Updated 2 weeks ago
- DNS Rebinding Exploitation Frameworkβ489Updated 3 years ago