SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
☆186Mar 2, 2021Updated 5 years ago
Alternatives and similar repositories for ssrfuzz
Users that are interested in ssrfuzz are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆146Jul 25, 2022Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆621Jan 20, 2021Updated 5 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆454Jan 9, 2024Updated 2 years ago
- A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…☆62Oct 25, 2020Updated 5 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆32Oct 11, 2020Updated 5 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,485Oct 12, 2024Updated last year
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 3 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆471Sep 16, 2023Updated 2 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 9 months ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆807Jul 4, 2023Updated 2 years ago
- BurpBounty 魔改版本☆419Mar 21, 2022Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆59Apr 8, 2021Updated 5 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆31May 21, 2025Updated 10 months ago
- Some Tutorials and Things to Help Bug Hunter☆31Mar 17, 2021Updated 5 years ago
- A collection of famous recon public scripts, but in bash <3☆29Mar 2, 2021Updated 5 years ago
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆134Jul 11, 2021Updated 4 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- ☆11May 15, 2020Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- Deploy open-source AI quickly and easily - Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Gotator is a tool to generate DNS wordlists through permutations.☆511Jul 17, 2022Updated 3 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,340Apr 18, 2023Updated 2 years ago
- 基于burpsuite的资产分析工具☆476Apr 29, 2023Updated 2 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,523Sep 4, 2025Updated 7 months ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆402May 28, 2025Updated 10 months ago
- A simple SSRF-testing sheriff written in Go☆337Oct 31, 2024Updated last year
- Host Header Injection Checker☆84Mar 2, 2022Updated 4 years ago
- SSRF 绕过 Payload☆15Nov 12, 2020Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- Serverless GPU API endpoints on Runpod - Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆351Jun 17, 2023Updated 2 years ago
- Prototype Pollution Scanner☆140Apr 11, 2021Updated 5 years ago
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆469Sep 10, 2023Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆973Dec 8, 2021Updated 4 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆130Dec 28, 2020Updated 5 years ago
- 批量处理url链接,获取多级路径并打印☆47Jul 12, 2023Updated 2 years ago
- CTFCrackTools 's BurpSuite Plugin - Decode and Encode☆82Apr 5, 2022Updated 4 years ago