nccgroup / requests-racer
Small Python library that makes it easy to exploit race conditions in web apps with Requests.
☆158Updated last year
Alternatives and similar repositories for requests-racer:
Users that are interested in requests-racer are comparing it to the libraries listed below
- Code execution via Python package installation.☆169Updated 6 years ago
- Automatic tool for DNS rebinding-based SSRF attacks☆298Updated 4 years ago
- A natural evolution of Burp Suite's Repeater tool☆195Updated last year
- Predict Mongo ObjectIds☆130Updated 6 years ago
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆199Updated 6 years ago
- [A]ndroid [A]pplication [P]entest [G]uide☆124Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆258Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆353Updated 7 months ago
- Piper Burp Suite Extender plugin☆117Updated last year
- ReconJSON is a project dedicated to creating a flexible and consistent JSON format across popular recon tools.☆102Updated 6 years ago
- Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).☆122Updated last year
- Unpack the source code of React and other Webpacked apps!☆109Updated last year
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆468Updated 5 years ago
- notes and code on past CTFs☆103Updated 3 years ago
- A cheat sheet for attacking SQLite via SQLi☆98Updated 8 years ago
- Everything you need about Burp Extension Generation☆152Updated 2 years ago
- ☆76Updated 2 years ago
- Race Condition framework☆268Updated 2 years ago
- A simple SSRF-testing sheriff written in Go☆324Updated 5 months ago
- ☆276Updated 2 years ago
- Evenly distributes scanner load across targets☆85Updated 2 years ago
- Tool for catching and logging different types of requests.☆220Updated 4 years ago
- Leverage certificate transparency live feed to monitor for newly issued subdomain certificates (last 90 days, configurable), for domains …☆220Updated 2 years ago
- Print out URL schemas from an Android app☆119Updated last month
- This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…☆285Updated 2 months ago
- research☆151Updated last year
- ☆147Updated 3 years ago
- Notes/Tools for pentesting☆81Updated last year
- DNS rebinding toolkit☆251Updated last year
- Push notifications for passive DNS data☆108Updated 8 years ago