ryandamour / ssrfuzz
SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
☆182Updated 4 years ago
Alternatives and similar repositories for ssrfuzz:
Users that are interested in ssrfuzz are comparing it to the libraries listed below
- Small Tool written based on chaos from projectdiscovery.io☆171Updated 6 months ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆198Updated 10 months ago
- essential templates for kenzer [DEPRECATED]☆114Updated 2 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆271Updated 3 months ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆175Updated last week
- Burp Extension for a passive scanning JS files for endpoint links.☆169Updated 5 years ago
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆133Updated last month
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆575Updated 4 years ago
- jolokia-exploitation-toolkit☆288Updated 4 months ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆166Updated 4 years ago
- burpsuite extension for check and extract sensitive request parameter☆113Updated 4 years ago
- ☆72Updated 4 months ago
- This is a burp plugin that extracts keywords from response using regexes and test for reflected XSS on the target scope.☆76Updated 4 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆161Updated last year
- a lightweight, flexible and novel open source poc verification framework☆235Updated 2 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- ☆76Updated 11 months ago
- 一款在github上发现敏感信息的自动化收集工具☆226Updated 3 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆99Updated 5 months ago
- ☆120Updated 2 years ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆263Updated 4 years ago
- BurpBounty插件的配置文件收集项目☆142Updated 4 years ago
- ☆127Updated 3 years ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- Authenticated SSRF in Grafana☆81Updated 10 months ago
- cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…☆141Updated 4 years ago
- Chrome extension that finds DOM based XSS vulnerabilities☆71Updated 2 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆117Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆119Updated last year