ntoskernel / deepsecrets
Secrets scanner that understands code
☆124Updated 2 months ago
Related projects: ⓘ
- Secrets scanner that understands code☆186Updated 10 months ago
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆134Updated 3 months ago
- A source code static analysis platform for AppSec enthusiasts.☆199Updated this week
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- Chat automates Nuclei template generation☆107Updated 10 months ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆242Updated 4 months ago
- ☆55Updated 2 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆250Updated 2 months ago
- Scanner for CVE-2023-22515 - Broken Access Control Vulnerability in Atlassian Confluence☆73Updated 11 months ago
- Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …☆93Updated 9 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆103Updated this week
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆112Updated 5 months ago
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆63Updated 6 months ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆84Updated 7 months ago
- ☆95Updated 7 months ago
- ☆115Updated last year
- The Most Advanced Client-Side Prototype Pollution Scanner☆125Updated this week
- Find CVE PoCs on GitHub☆136Updated 11 months ago
- ☆70Updated 2 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- ☆50Updated last week
- SourceGPT - prompt manager and source code analyzer built on top of ChatGPT as the oracle☆105Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated 7 months ago
- ☆91Updated this week
- A GraphQL enumeration and extraction tool☆127Updated last year
- GitHub Attack Toolkit - Extreme Edition☆151Updated this week
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆95Updated 7 months ago
- Awesome Privilege Escalation☆69Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆80Updated 3 months ago
- TInjA is a CLI tool for testing web pages for template injection vulnerabilities and supports 44 of the most relevant template engines fo…☆297Updated 4 months ago