phra / crosserLinks
A Reflected / Stored / DOM XSS Scanner based on Headless Chrome Node API via Puppeteer
☆40Updated 2 years ago
Alternatives and similar repositories for crosser
Users that are interested in crosser are comparing it to the libraries listed below
Sorting:
- Maintaining account persistence via XSS and Oauth☆77Updated 6 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.☆77Updated 4 years ago
- Hacking Artifactory with server side template injection☆51Updated 5 years ago
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆66Updated 3 months ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Updated 4 years ago
- Dump exposed HTTP .git fast☆50Updated 2 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated 2 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆48Updated 4 years ago
- Burp Suite extension to help make Graphql request more readable☆33Updated 7 years ago
- A simple Burp extension for scanning stuffs in CTF☆31Updated 7 years ago
- dns rebind tool with custom scripts☆83Updated 2 years ago
- Scan secrets from Continuous Integration Build Logs☆52Updated 5 years ago
- Scans tcl for command injection☆36Updated 6 years ago
- Spring Boot Actuator (jolokia) XXE/RCE☆23Updated 6 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆46Updated 2 years ago
- XXRF Shots - Useful for testing SSRF vulnerability☆74Updated 2 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆122Updated 6 years ago
- JWT fuzzer☆107Updated 7 years ago
- ☆22Updated 3 years ago
- Collection of scripts to test your website against vulnerabilities.☆18Updated last year
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Automatically exported from code.google.com/p/ra2-dom-xss-scanner☆29Updated 9 years ago
- A Burp Suite extension for headless, unattended scanning.☆36Updated 5 years ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆44Updated 3 years ago
- CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE☆32Updated 5 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- XPT - XSS Polyglot Tester☆37Updated 6 years ago
- This is the Go Server that relays all HTTP requests and responses between clients.☆28Updated last year
- ☆28Updated 4 years ago
- POC Script for CVE-2020-12800: RCE through Unrestricted File Type Upload☆27Updated 2 years ago