ptonewreckin / BlindRef
BlindRef serves as the basis for an automated Blind-Based XXE Exploitation Framework
☆26Updated 8 years ago
Alternatives and similar repositories for BlindRef:
Users that are interested in BlindRef are comparing it to the libraries listed below
- Materials related to the 2017 BSides Las Vegas presentation☆51Updated 4 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- This is sample code to demonstrate how one can use SQL Injection vulnerability to download local file from server in specific condition. …☆44Updated 8 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆82Updated 7 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- Extension adds a new tab in Burp Suite called Extractor☆43Updated 5 years ago
- WhiteBox CMS analysis☆69Updated last year
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Subdomain brute force focused on speed and data serialization☆74Updated 2 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- a collection of payloads for common webapps☆73Updated 11 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 6 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- Ruby command-line interface to Burp Suite's REST API☆59Updated 4 years ago
- Highlight Burp proxy requests made by different browsers☆30Updated 7 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- Scripts for Deploying new server☆48Updated 7 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 7 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆83Updated 2 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature☆25Updated 7 years ago
- OAuth Security Cheatsheet☆39Updated 10 years ago
- ☆34Updated 5 years ago
- Web Application Security related tools. Includes backdoors, proof of concepts and tricks☆37Updated 10 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Sparty - MS Sharepoint and Frontpage Auditing Tool☆31Updated 10 years ago
- Burp Notes Extension is a plugin for Burp Suite that adds a Notes tab. The tool aims to better organize external files that are created d…☆67Updated 10 months ago
- ☆70Updated 7 years ago