SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
☆184Mar 2, 2021Updated 5 years ago
Alternatives and similar repositories for ssrfuzz
Users that are interested in ssrfuzz are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆145Jul 25, 2022Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆625Jan 20, 2021Updated 5 years ago
- DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it☆454Jan 9, 2024Updated 2 years ago
- A fuzzer made in golang for finding issues like xss, lfi, rce, ssti...that detects issues using change in content length and verify it us…☆62Oct 25, 2020Updated 5 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- CRLFMap is a tool to find HTTP Splitting vulnerabilities☆32Oct 11, 2020Updated 5 years ago
- SSRF (Server Side Request Forgery) testing resources☆2,496Oct 12, 2024Updated last year
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆469May 17, 2026Updated last week
- automated web assets enumeration & scanning [DEPRECATED]☆288Mar 7, 2023Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆519Jul 29, 2020Updated 5 years ago
- Burp Suite extension for parsing Swagger web service definition files☆19Jul 15, 2025Updated 10 months ago
- An automation tool that scans sub-domains, sub-domain takeover, then filters out XSS, SSTI, SSRF, and more injection point parameters and…☆809May 11, 2026Updated 2 weeks ago
- BurpBounty 魔改版本☆417Mar 21, 2022Updated 4 years ago
- Burpsuite Plugin to detect Directory Traversal vulnerabilities☆27Jul 22, 2021Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆59Apr 8, 2021Updated 5 years ago
- A tool to test working urls.☆43Nov 17, 2020Updated 5 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆31May 21, 2025Updated last year
- Some Tutorials and Things to Help Bug Hunter☆31Mar 17, 2021Updated 5 years ago
- A collection of famous recon public scripts, but in bash <3☆30Mar 2, 2021Updated 5 years ago
- Erebus is a fast tool for parameter-based vulnerability scanning using a Yaml based template engine like nuclei.☆133Jul 11, 2021Updated 4 years ago
- Bash script to extract data from the Waybackmachine☆11Mar 15, 2021Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Feb 14, 2022Updated 4 years ago
- ☆11May 15, 2020Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Gotator is a tool to generate DNS wordlists through permutations.☆523Jul 17, 2022Updated 3 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,366Apr 18, 2023Updated 3 years ago
- 基于burpsuite的资产分析工具☆474Apr 29, 2023Updated 3 years ago
- Automatic SSRF fuzzer and exploitation tool☆3,555Sep 4, 2025Updated 8 months ago
- Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.☆413May 28, 2025Updated last year
- A simple SSRF-testing sheriff written in Go☆338Oct 31, 2024Updated last year
- Host Header Injection Checker☆84Mar 2, 2022Updated 4 years ago
- SSRF 绕过 Payload☆15Nov 12, 2020Updated 5 years ago
- A Payload Injector for bugbounties written in go☆70Jul 18, 2020Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|ID…☆352Jun 17, 2023Updated 2 years ago
- Prototype Pollution Scanner☆143Apr 11, 2021Updated 5 years ago
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆478Sep 10, 2023Updated 2 years ago
- An automated SSRF finder. Just give the domain name and your server and chill! ;) Also has options to find XSS and open redirects☆972Dec 8, 2021Updated 4 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆131Dec 28, 2020Updated 5 years ago
- 批量处理url链接,获取多级路径并打印☆47Jul 12, 2023Updated 2 years ago
- CTFCrackTools 's BurpSuite Plugin - Decode and Encode☆81Apr 5, 2022Updated 4 years ago