security-dockerfiles / burp

Related projects: ⓘ

• marco-lancini / docker_burp
  Burp as a Docker Container
  ☆59Updated 4 years ago
• lanmaster53 / cef
  Proof-of-concept CORS exploitation tool.
  ☆34Updated 5 years ago
• nightwatchcybersecurity / cloud_metadata_ips
  List of special metadata IPs used in cloud services
  ☆11Updated 5 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 7 years ago
• ajxchapman / sshreverseshell
  Full TTY reverse shell over SSH
  ☆57Updated 4 years ago
• PortSwigger / openapi-parser
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆39Updated 6 months ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• TheTwitchy / vulnd_xxe
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆25Updated 6 years ago
• adityaks / sparty
  Sparty - MS Sharepoint and Frontpage Auditing Tool
  ☆31Updated 10 years ago
• BountyMachine / about
  A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
  ☆33Updated 5 years ago
• PortSwigger / handy-collaborator
  Burp Suite plugin created for using Collaborator tool during manual testing
  ☆18Updated 2 years ago
• PortSwigger / flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆24Updated 2 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 6 years ago
• x-f1v3 / CVE-2019-3396
  Confluence Widget Connector path traversal (CVE-2019-3396)
  ☆22Updated 4 years ago
• summitt / sploits
  Quickly add http and https domains to BurpSuite's scope with all paths.
  ☆16Updated 8 years ago
• righettod / log-requests-to-sqlite
  BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
  ☆61Updated last month
• assetnote / kitebuilder
  ☆22Updated 7 months ago
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆40Updated 2 years ago
• phefley / burp-javascript-security-extension
  A Burp Suite extension which performs checks for cross-domain scripting against the DOM, subresource integrity checks, and evaluates Java…
  ☆21Updated 2 years ago
• redtimmy / OAMBuster
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆24Updated 5 years ago
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆26Updated 2 years ago
• m4ll0k / BurpSuite-Random_UserAgent
  ☆50Updated this week
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• augustd / burp-suite-error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆64Updated 9 months ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• mpgn / Slanger-RCE
  RCE in Slanger using deserialization of Ruby objects
  ☆11Updated 5 years ago
• syriusbughunt / CVE-2018-14667
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆47Updated 5 years ago
• m3ssap0 / SpringBreakVulnerableApp
  WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…
  ☆11Updated 5 years ago
• t0kx / exploit-CVE-2015-1427
  Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container
  ☆32Updated 6 years ago