p1g3 / JSONP-Hunter
JSONP Hunter in burpsuite.
☆211Updated 4 years ago
Alternatives and similar repositories for JSONP-Hunter:
Users that are interested in JSONP-Hunter are comparing it to the libraries listed below
- burpsuite extension for check unauthorized vulnerability☆230Updated 4 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆202Updated last year
- Shiro-721 RCE Via RememberMe Padding Oracle Attack☆255Updated 4 years ago
- ☆320Updated 3 years ago
- Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】☆240Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆351Updated 2 years ago
- xray+rad批量主动扫描☆226Updated 2 years ago
- 🧬 辅助生成 XRay YAML POC☆263Updated 2 years ago
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆114Updated 3 years ago
- 用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统☆602Updated 7 months ago
- JDBC Connection URL Attack☆397Updated 3 years ago
- 《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!☆198Updated 2 years ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆356Updated 3 years ago
- 一个LDAP请求监听器,摆脱dnslog平台☆285Updated last year
- 规范渗透测试报告中的漏洞名称以及修复建议☆144Updated 5 years ago
- 一款基于burp的反射xss检测插件☆152Updated 3 years ago
- 一个高度可定制化的JNDI和Java反序列化利用工具☆459Updated 2 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆324Updated 2 years ago
- ☆497Updated 2 years ago
- SQL 注入利用工具,存在waf的情况下自定义编写tamper脚本 dump数据☆283Updated 4 years ago
- Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描☆252Updated last year
- 自己收集整理自用的字典☆228Updated last year
- ��🐸Unauthorized Detection Framework未授权访问检测框架☆158Updated last year
- 基于burpsuite的资产分析工具☆433Updated last year
- ☆304Updated 5 months ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆302Updated 11 months ago
- Shiro-550 不依赖CC链利用工具☆449Updated 6 months ago
- 域渗透脑图中文翻译版☆275Updated 3 years ago