payatu / vuln-nodejs-appLinks
☆28Updated last year
Alternatives and similar repositories for vuln-nodejs-app
Users that are interested in vuln-nodejs-app are comparing it to the libraries listed below
Sorting:
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated last year
- ☆32Updated last year
- Extract JavaScript files from burp suite project with ease.☆95Updated 3 years ago
- ☆96Updated 4 years ago
- This repository stores some of my custom BCheck Scan configurations. Its goal is to identify intriguing elements that warrant further man…☆102Updated last year
- A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.☆36Updated 3 years ago
- Wordlist to bruteforce for LFI☆126Updated 6 years ago
- ☆70Updated last year
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆76Updated 2 years ago
- Directory scans☆83Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated 2 years ago
- Prototype Pollution Scanner☆126Updated 4 years ago
- ☆63Updated 2 years ago
- Golang tool which helps dropping the irrelevant entries from your ffuf result file.☆140Updated last year
- For unpacking base64:ed "Save items"-content from Burp (From search + proxy history)☆54Updated 8 months ago
- Simple Django to show post-exploitation options when server-side template injection (SSTI) is present in app using Django Templates.☆22Updated 4 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Updated 2 years ago
- vīlicus is a bug bounty api dashboard☆40Updated 2 years ago
- This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…☆80Updated 2 years ago
- Results from analyzing data gathered from 1.6 billion subdomains☆32Updated last year
- ☆84Updated 3 years ago
- ☆57Updated last year
- Check AWS S3 instances for read/write/delete access☆121Updated 3 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆53Updated 2 years ago
- NotSoCereal: A Deserialization exploit playground☆53Updated 3 years ago
- Some of the gf patterns which i use☆45Updated 3 years ago
- IIS shortname scanner + bruteforce☆54Updated last year
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆152Updated last year
- JSSCM detects expired domains for Stored XSS exploitation during browsing.☆52Updated 6 months ago
- A path-normalization pentesting tool.☆132Updated last month