SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
☆185Mar 2, 2021Updated 5 years ago
Alternatives and similar repositories for ssrfuzz
Users that are interested in ssrfuzz are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆145Jul 25, 2022Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆616Jan 20, 2021Updated 5 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆453Jan 9, 2024Updated 2 years ago
- A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…☆62Oct 25, 2020Updated 5 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆32Oct 11, 2020Updated 5 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,482Oct 12, 2024Updated last year
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆470Sep 16, 2023Updated 2 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 8 months ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆804Jul 4, 2023Updated 2 years ago
- BurpBounty 魔改版本☆418Mar 21, 2022Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- ☆59Apr 8, 2021Updated 4 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆28May 21, 2025Updated 10 months ago
- Windows NTLMSSP library☆10Aug 27, 2021Updated 4 years ago
- Some Tutorials and Things to Help Bug Hunter☆31Mar 17, 2021Updated 5 years ago
- A collection of famous recon public scripts, but in bash <3☆29Mar 2, 2021Updated 5 years ago
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆134Jul 11, 2021Updated 4 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆11May 15, 2020Updated 5 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆508Jul 17, 2022Updated 3 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,334Apr 18, 2023Updated 2 years ago
- 基于burpsuite的资产分析工具☆475Apr 29, 2023Updated 2 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,505Sep 4, 2025Updated 6 months ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆397May 28, 2025Updated 9 months ago
- A simple SSRF-testing sheriff written in Go☆336Oct 31, 2024Updated last year
- Host Header Injection Checker☆84Mar 2, 2022Updated 4 years ago
- SSRF 绕过 Payload☆15Nov 12, 2020Updated 5 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- Prototype Pollution Scanner☆139Apr 11, 2021Updated 4 years ago
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆351Jun 17, 2023Updated 2 years ago
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆464Sep 10, 2023Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆972Dec 8, 2021Updated 4 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆130Dec 28, 2020Updated 5 years ago
- 批量处理url链接,获取多级路径并打印☆46Jul 12, 2023Updated 2 years ago