A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.
☆558Mar 6, 2023Updated 3 years ago
Alternatives and similar repositories for tracy
Users that are interested in tracy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Probe a rendering engine for vulnerabilities and other features☆365Oct 13, 2021Updated 4 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testing☆73Aug 31, 2020Updated 5 years ago
- Burp Suite Extension to monitor new scope☆201Mar 31, 2021Updated 5 years ago
- Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"☆357Oct 14, 2020Updated 5 years ago
- Fast directory scanning and scraping tool☆633Apr 14, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the ac…☆1,805Apr 26, 2024Updated 2 years ago
- Keye is a reconnaissance tool that was written in Python with SQLite3 integrated. After adding a single URL, or a list of URLs, it will m…☆100Dec 30, 2019Updated 6 years ago
- A highly configurable Framework for easy automated web scanning☆384Jul 13, 2020Updated 5 years ago
- DOM XSS scanner for Single Page Applications☆416Nov 15, 2025Updated 6 months ago
- rapid content discovery tool for recursively querying webservers, handy in pentesting and web application assessments☆250Oct 15, 2019Updated 6 years ago
- Improved decoder for Burp Suite☆139Aug 30, 2021Updated 4 years ago
- Automated HTTP Request Repeating With Burp Suite☆895Dec 15, 2021Updated 4 years ago
- This tool downloads, installs, and configures a shiny new copy of Chromium.☆475Apr 3, 2024Updated 2 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆266Nov 18, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Automated blind-xss search for Burp Suite☆284Oct 10, 2019Updated 6 years ago
- Security Mindmap that could be useful for the infosec community when doing pentest, bug bounty or red-team assessments.☆758Apr 12, 2022Updated 4 years ago
- ☆2,324Dec 8, 2023Updated 2 years ago
- This tool can be used to brute discover GET and POST parameters☆1,395Aug 24, 2019Updated 6 years ago
- A bash script that fetches and maintains thousands of DNS resolvers☆64Aug 24, 2020Updated 5 years ago
- A Tool for Domain Flyovers☆5,941May 22, 2022Updated 4 years ago
- ☆32Apr 6, 2021Updated 5 years ago
- ☆39Sep 23, 2019Updated 6 years ago
- StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile ap…☆871Apr 27, 2021Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A tool for embedding XXE/XML exploits into different filetypes☆1,171Dec 16, 2024Updated last year
- jsonp is a Burp Extension which attempts to reveal JSONP functionality behind JSON endpoints.☆155Feb 15, 2021Updated 5 years ago
- DNS Rebinding Exploitation Framework☆493Apr 27, 2021Updated 5 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆744May 4, 2019Updated 7 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Feb 4, 2023Updated 3 years ago
- Content hijacking proof-of-concept using Flash, PDF and Silverlight☆387May 16, 2019Updated 7 years ago
- An automation framework for running multiple open sourced subdomain bruteforcing tools (in parallel) using your own wordlists via Docker …☆260Aug 22, 2021Updated 4 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆549Jun 12, 2017Updated 9 years ago
- Reclaim control of your Burp Suite Repeater tabs with this powerful extension☆69Aug 15, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- secretz, minimizing the large attack surface of Travis CI☆326May 30, 2022Updated 4 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆125Apr 16, 2019Updated 7 years ago
- bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.☆574Mar 4, 2023Updated 3 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…☆362Mar 6, 2025Updated last year
- Extracting URLs of a specific target based on the results of "commoncrawl.org"☆275Dec 4, 2025Updated 6 months ago
- A better dns bruteforcer written in golang☆13Nov 4, 2018Updated 7 years ago
- XSS Hunter Burp Plugin☆152Aug 31, 2018Updated 7 years ago