sea-erkin / log-snare
LogSnare: A playground for testing, preventing, and logging IDOR vulnerabilities.
☆31Updated 11 months ago
Alternatives and similar repositories for log-snare:
Users that are interested in log-snare are comparing it to the libraries listed below
- This repository has workflows created for https://github.com/RikunjSindhwad/Task-Ninja☆24Updated 6 months ago
- Custom nuclei templates for bug hunting.....☆25Updated 8 months ago
- Continuous Reconnaissance and Vulnerability Scanning for Bug Bounties☆17Updated 8 months ago
- ☆16Updated last year
- Run ffuf with the appropriate options to brute-force the directories using the awesome different wordlists.☆23Updated last year
- Advanced test for proxy & waf☆13Updated 5 months ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆25Updated 7 months ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- Process URLs and remove duplicate query parameters.☆27Updated 11 months ago
- Burp extension used to snip any header from all the requests.☆22Updated last year
- ☆14Updated 10 months ago
- Manage attack surface data on Elasticsearch☆22Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 5 months ago
- Top disclosed reports from HackerOne☆12Updated 3 months ago
- A Burp Extension that makes it easier to view all script code on a Response.☆13Updated last year
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆16Updated 4 years ago
- PrestaXSRF is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…☆31Updated last year
- ☆18Updated last year
- This tool automates the process of running FFUF (Fuzz Faster U Fool) and post-processing its results to extract valid URLs. It supports b…☆33Updated 3 months ago
- A powerful and clean bash script to dump and extract information from Project Discovery's Chaos Project https://chaos.projectdiscovery.io…☆25Updated 2 years ago
- Fuzz every path with goky☆14Updated last year
- ☆12Updated 3 years ago
- Template Nuclei SSTI☆29Updated last year
- A Bug Bounty Platform that allows hunters to issue commands over a geo-distributed cluster. The ideal user is someone who is attempting t…☆47Updated 4 months ago
- Looks for parameters in urls☆33Updated 4 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 10 months ago
- ☆13Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- POC for CVE-2024-40348. Will attempt to read /etc/passwd from target☆28Updated 7 months ago
- Find CVEs that don't have a Detectify modules.☆21Updated last year