nxenon / grpc-pentest-suite
gRPC-Web Pentesting Suite + Burp Suite Extension
☆159Updated 2 months ago
Related projects: ⓘ
- HTTP/2 Single Packet Attack low Level Library / Tool based on Scapy + Exploit Timing Attacks☆125Updated last month
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆218Updated 5 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆110Updated last month
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆80Updated 2 months ago
- A Collection of Logger++ Filters for Hunting API Vulnerabilities☆188Updated 2 years ago
- A BurpSuite extension to create a custom word-list of endpoint and parameters for enumeration and fuzzing☆139Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- Bambdas collection for Burp Suite Professional and Community.☆193Updated last month
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆124Updated 2 weeks ago
- A rapid HTTP downgrade smuggling scanner written in Go.☆242Updated 4 months ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆182Updated last month
- Go scanner to find web cache poisoning vulnerabilities in a list of URLs☆121Updated 6 months ago
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆112Updated 6 months ago
- ☆116Updated this week
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆86Updated 7 months ago
- ☆150Updated last month
- SignSaboteur is a Burp Suite extension for editing, signing, verifying various signed web tokens☆134Updated 3 months ago
- ☆233Updated 3 years ago
- Automated learning of regexes for DNS discovery☆350Updated last year
- Distribute ordinary bash commands over many systems☆161Updated 2 years ago
- CT Log Scanner☆241Updated 3 months ago
- Enumerate / Dump Docker Registry☆156Updated 5 months ago
- ☆143Updated last year
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆129Updated this week
- A better way of querying certificate transparency logs☆75Updated 10 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆175Updated 2 years ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆237Updated last year
- IIS shortname scanner written in Go☆299Updated last year
- GQLSpection - parses GraphQL introspection schema and generates possible queries☆67Updated 2 months ago
- unleashed ffuf☆79Updated 2 months ago