shanxigetanxiaochou / burp-xss-scan
burp被动插件扫反射xss
☆14Updated last year
Alternatives and similar repositories for burp-xss-scan:
Users that are interested in burp-xss-scan are comparing it to the libraries listed below
- 一款BurpSuite插件,辅助手工测试�☆72Updated last year
- 基于load data逻辑漏洞的Mysql蜜罐☆17Updated last year
- burpsuite插件-被动无感识别指纹-主动poc扫描☆25Updated 6 months ago
- 一款支持检测host头攻击的burp suite插件☆51Updated last year
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆36Updated 8 months ago
- 一款扫描js中敏感api的burp插件☆33Updated last year
- god_param☆40Updated last year
- ☆23Updated 2 years ago
- ☆16Updated 2 years ago
- 海康威视iSecure后渗透☆28Updated 7 months ago
- 支持注入内存马和Bypass WAF☆29Updated last year
- 基于 Json 、自定义Go脚本的多协程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆39Updated 4 months ago
- jmx未授权访问 弱口令批量检测 GUI工具☆31Updated last year
- cobaltstrike 实战案例, 含20个实战案例。插件包在releases中☆34Updated last year
- Spring Boot whitelabel error page SpEL rce EXP☆13Updated 9 months ago
- 监测cnvd漏洞信息☆23Updated last year
- Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickl…☆29Updated 7 months ago
- 一个既可主动,又可被动提取链接的burp插件☆43Updated 11 months ago
- 致远OA利用工具☆26Updated last year
- Start4burp is a burpsuit plugin☆19Updated 5 months ago
- a DIY tools to decrypto webshell Traffic☆25Updated last year
- linux权限维持脚本☆36Updated last week
- BurpSuite extensions -Bypass Suite☆23Updated 7 months ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆29Updated last year
- APIKit 是Burp Suite 的一个API接口扫描插件,该版本APIKit是对API-Security项目的APIKit1.0进行的二开,增加了扫描开关,避免直接打开burp乱扫被抓起来☆42Updated last month
- nuclei模版生成插件☆105Updated last year
- 红队命令速查 是由棱角社区(Edge Forum) 整理的关于 Red Team 期间所常使用的一些基础命令。☆56Updated 8 months ago
- Courier 信使,自用应急响应信息收集脚本,便于快速进行信息收集、定位攻击信息。☆14Updated 4 months ago
- weblogic批量打入内存马,electron+vue3+springboot实现。☆50Updated last year