sherlock-ohm / burpscanLinks
☆94Updated 6 months ago
Alternatives and similar repositories for burpscan
Users that are interested in burpscan are comparing it to the libraries listed below
Sorting:
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆226Updated 2 weeks ago
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆101Updated last month
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆151Updated last week
- ☆69Updated 4 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 3 months ago
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆123Updated 9 months ago
- Search for all leaked keys/secrets using one regex! bugbounty☆139Updated 6 months ago
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆63Updated 4 months ago
- ☆46Updated 6 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆101Updated 2 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆207Updated last month
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆133Updated last week
- ⚡ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.☆57Updated 8 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆115Updated 11 months ago
- ☆124Updated last month
- A passive way to find backups/ sensitive information.☆88Updated 2 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆176Updated last week
- AI/LLM local model integration for analysis of reconftw results☆83Updated 5 months ago
- Apache HTTP Server Vulnerability Testing Tool | PoC for CVE-2024-38472 , CVE-2024-39573 , CVE-2024-38477 , CVE-2024-38476 , CVE-2024-3847…☆105Updated last year
- Analyze Android native `.so` files☆81Updated 2 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆24Updated 3 months ago
- A tool for inspecting and analyzing mobile application storage files.☆47Updated 4 months ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆147Updated last month
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆98Updated last year
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆39Updated 7 months ago
- A fully automated subdomain reconnaissance and sensitive data discovery toolkit.☆46Updated 3 months ago
- Resources for Mobile Application Testing 📓☆65Updated last year
- Backup Files Wordlist Generator - generate a comprehensive list of potential backup file Wordlist based on a given list URL and backup fi…☆82Updated 3 months ago
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆126Updated last year
- This repository serves as a curated resource for OffSec's OSEP (PEN-300) certification preparation, containing useful links, materials, a…☆65Updated 10 months ago