ryandamour / ssrfuzz
SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
☆182Updated 4 years ago
Alternatives and similar repositories for ssrfuzz:
Users that are interested in ssrfuzz are comparing it to the libraries listed below
- Small Tool written based on chaos from projectdiscovery.io☆171Updated 5 months ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆197Updated 9 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆169Updated 5 years ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆174Updated 10 months ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆573Updated 4 years ago
- burpsuite extension for check and extract sensitive request parameter☆112Updated 4 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆133Updated last month
- essential templates for kenzer [DEPRECATED]☆114Updated 2 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆270Updated 2 months ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆262Updated 4 years ago
- ☆115Updated 2 years ago
- ☆127Updated 3 years ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆76Updated 4 years ago
- jolokia-exploitation-toolkit☆287Updated 3 months ago
- Nuclei Templates to reproduce Cracking the lens's Research☆125Updated 3 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- BurpBounty插件的配置文件收集项目☆142Updated 4 years ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…☆141Updated 3 years ago
- ☆25Updated 4 years ago
- 一款在github上发现敏感信息的自动化收集工具☆226Updated 2 years ago
- a lightweight, flexible and novel open source poc verification framework☆234Updated 2 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆166Updated 4 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆161Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆118Updated last year
- ☆70Updated 3 months ago
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆99Updated 4 months ago
- CVE-2020–14882、CVE-2020–14883☆283Updated 4 years ago