raverrr / plution
Prototype pollution scanner using headless chrome
☆197Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for plution
- A reverse whois tool based on Whoxy API.☆158Updated 7 months ago
- List of fresh DNS resolvers updated daily☆106Updated last year
- Burp Extension for easily creating Wordlists☆210Updated 3 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- ☆128Updated last year
- Burp extension to create target specific and tailored wordlist from burp history.☆231Updated 2 years ago
- A replacement of "qsreplace", accepts URLs as standard input, replaces all query string values with user-supplied values and stdout.☆102Updated 2 years ago
- ☆162Updated 2 years ago
- ☆146Updated last year
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆178Updated 2 years ago
- Customisable and automated HTTP header injection☆237Updated 4 months ago
- Secret and/or credential patterns used for gf.☆233Updated last year
- A blazing fast & feature rich Amazon S3 bucket enumerator.☆94Updated 2 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆117Updated 2 years ago
- ☆144Updated last year
- Get related domains / subdomains by looking at Google Analytics IDs☆226Updated 2 years ago
- List of reporting templates I have used since I started doing BBH.☆234Updated last month
- The Bug Bounty Reconnaissance Framework (BBRF) can help you coordinate your reconnaissance workflows across multiple devices☆294Updated last year
- Check AWS S3 instances for read/write/delete access☆121Updated 2 years ago
- Fast CLI tool to find the parameters that can be used to find SSRF or Out-of-band resource load☆289Updated last month
- ☆146Updated last year
- Build your own reconnaissance system with Osmedeus Next Generation☆180Updated last month
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆95Updated 3 years ago
- ☆65Updated last year
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆184Updated 3 months ago
- IP Lookups for Open Ports and Vulnerabilities from internetdb.shodan.io☆117Updated 2 years ago
- Urls de-duplication tool for better recon.☆136Updated 3 months ago