pentesterland / Log4Shell

Related projects: ⓘ

• Ophion-Security / sret
  ☆99Updated this week
• michael1026 / trashcompactor
  ☆64Updated last year
• InsiderPhD / Arjun
  HTTP parameter discovery suite.
  ☆59Updated 4 years ago
• NotSoSecure / NotSoCereal-Lab
  NotSoCereal: A Deserialization exploit playground
  ☆48Updated 2 years ago
• j3ssie / cdnstrip
  Striping CDN IPs from a list of IP Addresses
  ☆72Updated 2 years ago
• owasp-amass / oam-tools
  Analysis and management tools for an Open Asset Model database
  ☆38Updated this week
• hahwul / RegexPassive
  🔭 Collection of regexp pattern for security passive scanning
  ☆110Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆162Updated 3 years ago
• pry0cc / tew
  A quick ‘n dirty nmap parser written in Golang to convert nmap xml to IP:Port notation.
  ☆118Updated 2 months ago
• riramar / h2rs
  Detects request smuggling via HTTP/2 downgrades.
  ☆92Updated 2 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆115Updated last year
• trickest / recon-and-vulnerability-scanner-template
  Create your own recon & vulnerability scanner with Trickest and GitHub
  ☆49Updated 11 months ago
• BuildHackSecure / ffufme
  Target practice for ffuf
  ☆55Updated 3 years ago
• Static-Flow / RepeaterSearch
  This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response ma…
  ☆78Updated 11 months ago
• trickest / trickest-cli
  Execute Trickest workflows right from your terminal
  ☆76Updated last month
• shabarkin / CodeAllTheThings
  A list of threat sinks used in the manual security source code review for application security
  ☆69Updated last year
• 0xDexter0us / uproot-JS
  Extract JavaScript files from burp suite project with ease.
  ☆76Updated 2 years ago
• Rhynorater / rebindMultiA
  ☆54Updated last year
• wdahlenburg / VhostFinder
  Identify virtual hosts by similarity comparison
  ☆114Updated last month
• valeriyshevchenko90 / WhereToGo
  WhereToGo - is a list of popular services that might be used in organizations. By having an account of the user - you can try to find ent…
  ☆112Updated 2 years ago
• PortSwigger / serialization-examples
  ☆38Updated 9 months ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆119Updated 2 years ago
• JaimePolop / RExpository
  ☆70Updated 2 months ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆105Updated 11 months ago
• PortSwigger / js-miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• BishopFox / Imperva_gzip_WAF_Bypass
  ☆153Updated 2 years ago
• adamjsturge / xsshunter-express
  Archived Please go to https://github.com/adamjsturge/xsshunter-go
  ☆31Updated 6 months ago
• osmedeus / osmedeus-workflow
  Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own
  ☆67Updated 5 months ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆99Updated 3 years ago
• cyberaz0r / Burp-IISTildeEnumerationScanner
  Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability
  ☆54Updated last year