sherlock-ohm / burpscan
☆93Updated last month
Alternatives and similar repositories for burpscan
Users that are interested in burpscan are comparing it to the libraries listed below
Sorting:
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆75Updated this week
- ☆46Updated 2 months ago
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆96Updated last month
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆59Updated 7 months ago
- A passive way to find backups/ sensitive information.☆78Updated last week
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆90Updated 9 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆108Updated last month
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆114Updated 4 months ago
- A Powerful Recon Engine☆63Updated 5 months ago
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆51Updated 4 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆91Updated last week
- ☆119Updated last year
- SubOwner - A Simple tool check for subdomain takeovers.☆112Updated 6 months ago
- Grep subdomains from web pages.☆42Updated 3 months ago
- A collection of config files for linux focusing on hackthebox theme☆44Updated 4 months ago
- Vulnerabilities you my miss during a penetration testing.☆98Updated last year
- ⚡ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.☆54Updated 4 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆126Updated last month
- Bug Bounty Web and API Payloads☆35Updated 6 months ago
- SubCerts is a simple tool that uses certificate transparency logs (via crt.sh) to extract subdomains of a given domain.☆70Updated 3 months ago
- 🔍 LFIer is a powerful and efficient tool for detecting Local File Inclusion (LFI) vulnerabilities in web applications.☆53Updated 4 months ago
- Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the int…☆131Updated 5 months ago
- ☆60Updated last year
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆86Updated 3 weeks ago
- Nuclei-AI-Prompts☆190Updated last month
- Bypass-Four03 is a powerful bash tool designed to help testers bypass HTTP 403 forbidden errors through various path and header manipulat…☆140Updated 6 months ago
- Xploitra is a powerful reverse shell payload generator for educational and security testing. It offers customizable payloads with advance…☆62Updated 6 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆35Updated 2 months ago
- ParamScan is a chrome extension for finding reflected parameters in a webpage.☆78Updated 4 months ago
- 🚀 ORedirectMe is a robust and efficient tool designed to detect Open Redirect vulnerabilities in web applications.☆17Updated 4 months ago