nccgroup / wssip
Application for capturing, modifying and sending custom WebSocket data from client to server and vice versa.
☆445Updated last year
Related projects: ⓘ
- DNS Rebinding Exploitation Framework☆479Updated 3 years ago
- Mallory - MiTM TCP and UDP Proxy☆313Updated 2 years ago
- Probe a rendering engine for vulnerabilities and other features☆364Updated 2 years ago
- A front-end JavaScript toolkit for creating DNS rebinding attacks.☆482Updated 2 years ago
- A tool designed to assist with finding all sinks and sources of a web application and display these results in a digestible manner.☆552Updated last year
- Nameserver DNS poisoning attacks made easy☆515Updated 7 years ago
- Mallet is an intercepting proxy for arbitrary protocols☆258Updated 3 months ago
- Stealing CSRF tokens with CSS injection (without iFrames)☆315Updated 6 years ago
- A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)☆619Updated 2 years ago
- Extract subdomains from SSL certificates in HTTPS sites.☆364Updated 3 weeks ago
- A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.☆393Updated 4 years ago
- Tool to help with the exploitation of web application race conditions☆178Updated 6 years ago
- ☆317Updated 6 years ago
- A tiny and cute URL fuzzer☆386Updated last year
- An OSINT tool that discovers sub-domains by searching Certificate Transparency logs☆465Updated 2 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆382Updated 3 years ago
- Pown.js is a security testing an exploitation toolkit built on top of Node.js and NPM.☆259Updated last year
- a CLI for ephemeral penetration testing☆7Updated 4 years ago
- Hooks in to interesting functions and helps reverse the web app faster.☆162Updated last week
- htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.☆610Updated 2 years ago
- Next-gen BurpSuite penetration testing tool☆454Updated 8 years ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applica…☆480Updated 6 years ago
- Tools for auditing WAFS☆456Updated 3 years ago
- Various Tools and Docker Images☆277Updated 6 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.☆464Updated 4 years ago
- psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…☆270Updated 3 years ago
- A Tool for DNS Delegation Trust Graphing☆401Updated last year
- Turn your Burp suite into headless active web application vulnerability scanner☆154Updated 6 years ago
- Basic Electron Exploitation☆201Updated 4 years ago