sherlock-ohm / burpscanLinks
☆95Updated 9 months ago
Alternatives and similar repositories for burpscan
Users that are interested in burpscan are comparing it to the libraries listed below
Sorting:
- SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source c…☆108Updated 4 months ago
- ⚡ XSSuccessor is a powerful, asynchronous Cross-Site Scripting (XSS) detection tool.☆55Updated last year
- Dnsbruter is a powerful tool designed to perform active subdomain enumeration and discovery. It uses DNS resolution to efficiently brutef…☆122Updated last year
- Frogy 2.0 is an automated external reconnaissance and Attack Surface Management (ASM) toolkit☆324Updated 2 months ago
- ☆47Updated 10 months ago
- GarudRecon automates domain recon with top open-source tools to discover assets, enumerate subdomains, and detect XSS, SQLi, LFI, RCE & m…☆191Updated this week
- Scripts, files, cheatsheets and more used for pentesting and my OSWE / AWAE exam.☆98Updated this week
- Advanced CORS Header Checker Tool with Vulnerability Detection and Bypass Attempts☆65Updated 7 months ago
- Unwaf is a Go tool designed to help identify WAF bypasses using passive techniques, such as: SPF records and DNS history. By default, Unw…☆98Updated 6 months ago
- This repository contains my writeups for the labs in PortSwigger's Web Security Academy platform. Each lab writeup includes the lab's nam…☆104Updated 6 months ago
- ☆78Updated 7 months ago
- Ultimate Tasks Automation Framework for Hackers, DevSecOps, Pentesters, and Bug-bounty hunters!☆154Updated 3 months ago
- 🪄 XSSDynaGen is a tool designed to analyze URLs with parameters, identify the characters allowed by the server, and generate advanced XS…☆55Updated last year
- Search for all leaked keys/secrets using one regex! bugbounty☆179Updated 9 months ago
- IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applicatio…☆216Updated 3 months ago
- IDOR Scanner is a Burp Suite extension that automates the detection and enumeration of potentially vulnerable numeric fields to identify …☆42Updated 10 months ago
- A passive way to find backups/ sensitive information.☆88Updated 6 months ago
- SubOwner - A Simple tool check for subdomain takeovers.☆117Updated last year
- ☆194Updated 8 months ago
- ☆124Updated 4 months ago
- A New Approach to Directory Bruteforce with WaybackLister v1.0☆225Updated 4 months ago
- GBounty is a multi-step website vulnerability scanner developed in Golang designed to help companies, pentesters, and bug hunters identif…☆158Updated 4 months ago
- ADKAVEH - One PowerShell script for Active Directory discovery and safe attack simulation.☆37Updated 3 months ago
- ☆82Updated 6 months ago
- Parse FFUF results in GUI with option to sort based by response code , size , keyword☆99Updated last year
- Checks for SSRF using built-in custom Payloads after fetching URLs from Multiple Passive Sources & applying complex patterns aimed at SSR…☆131Updated last year
- ☆56Updated 3 months ago
- 📲 Python project developed to help on the process of searching for vulnerabilities in Android mobile applications. It takes the APK file…☆139Updated 3 months ago
- BaldHead is a modular and interactive Active Directory (AD) attack framework built for red teamers and security testers. It automates enu…☆108Updated 6 months ago
- A tool for inspecting and analyzing mobile application storage files.☆49Updated 8 months ago