profmoriarity / rexsser
This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.
☆76Updated 4 years ago
Alternatives and similar repositories for rexsser:
Users that are interested in rexsser are comparing it to the libraries listed below
- ☆14Updated 2 years ago
- Burp Bounty profiles☆82Updated 3 years ago
- Authenticated SSRF in Grafana☆80Updated 9 months ago
- ☆55Updated 2 years ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…☆32Updated 8 years ago
- ☆33Updated 2 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated last year
- Chrome extension that finds DOM based XSS vulnerabilities☆71Updated 2 years ago
- burpsuite extension for check and extract sensitive request parameter☆113Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆54Updated 4 months ago
- ☆25Updated 4 years ago
- essential templates for kenzer [DEPRECATED]☆114Updated 2 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆117Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- Expand urls into one url for each path depth☆34Updated 4 years ago
- SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist☆29Updated 4 years ago
- A Web-UI for subdomain enumeration (subfinder)☆54Updated 4 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆117Updated 4 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆90Updated 5 years ago
- nuclei framework scripts☆34Updated 2 years ago
- Tool to searching sentry config on page or in javascript files and check blind SSRF☆69Updated 10 months ago
- Small Tool written based on chaos from projectdiscovery.io☆171Updated 5 months ago
- Vulnerability Cheatsheet☆54Updated 2 years ago
- Ghazi is a BurpSuite Plugins For Testing various PayLoads Like "XSS,SQLi,SSTI,SSRF,RCE and LFI" through Different tabs , Where Each Tab W…☆110Updated 6 years ago
- URL Screenshot Utility☆27Updated last year
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆64Updated 4 years ago
- WordPress Plugin Update Confusion☆66Updated 3 years ago