rastating / xss-chef
A web application for generating custom XSS payloads
☆77Updated 5 years ago
Alternatives and similar repositories for xss-chef:
Users that are interested in xss-chef are comparing it to the libraries listed below
- Automatic remote/local file inclusion vulnerability analysis and exploit tool☆60Updated 5 years ago
- Disrupt WAF by abusing SSL/TLS Ciphers☆48Updated 6 years ago
- An interactive OOB XXE data exfiltration tool☆91Updated 7 years ago
- BURP extension providing a set of values for the HTTP request "Host" header for the "BURP Intruder" in order to abuse virtual host resolu…☆60Updated 7 years ago
- Some scripts and exploits☆145Updated 6 years ago
- Automatically forward HTTP GET & POST requests to SQLMap's API to test for SQLi and XSS☆83Updated 2 years ago
- a collection of payloads for common webapps☆73Updated 11 years ago
- Pillage a git repo found in an accessible web root☆61Updated 13 years ago
- Automating Jenkins Hacking using Shodan API☆94Updated 7 years ago
- Simple Server Side Request Forgery services enumeration tool.☆55Updated 6 years ago
- Common Wordlists☆53Updated 8 years ago
- A Burp Extension designed to identify argument injection vulnerabilities.☆121Updated 5 years ago
- XSS explot kit/Blind XSS framework/BurpSuite extension☆49Updated 4 years ago
- A CRLF ( Carriage Return Line Feed ) Injection attack occurs when a user manages to submit a CRLF into an application. This is most commo…☆46Updated 2 years ago
- A Burp extension to detect and exploit versions of Telerik Web UI vulnerable to CVE-2017-9248.☆98Updated 6 years ago
- GitBackdorizer (bad name, I know!) Is a proof of concept from Ulisses Castro's talk - 50 ton of backdoors (https://www.slideshare.net/uli…☆49Updated 6 years ago
- Actarus is a custom tool for bug bounty☆76Updated 5 years ago
- WhiteBox CMS analysis☆69Updated last year
- TheDoc is a simple but very useful SQLMAP automator with built in admin finder, hash cracker(using hashca) and more!☆98Updated 6 years ago
- XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF,…☆75Updated 6 years ago
- Convert your masscan/subdomain-scan results (80,443,8080) into screenshots for better analysis☆36Updated 6 years ago
- Burp Suite Importer - Connect to multiple web servers while populating the sitemap.☆48Updated 4 years ago
- Endpoint for Out-of-Band Exfiltration (DNS & HTTP)☆92Updated 6 years ago
- Dumain Bruteforcer - a fast and flexible domain bruteforcer☆53Updated 6 years ago
- A collection of scripts used to interact with the Burp Rest API☆51Updated 6 years ago
- NodeXP - A Server Side Javascript Injection tool capable of detecting and exploiting Node.js vulnerabilities☆106Updated last month
- ☆42Updated 4 years ago
- Tooling and commands for common red team and Infrastructure testing tasks☆41Updated 2 years ago
- ☆29Updated 6 years ago
- Search drives for documents containing passwords☆62Updated 10 years ago