silentsignal / ActiveScan3PlusLinks
Modified version of ActiveScan++ Burp Suite extension
☆31Updated 8 years ago
Alternatives and similar repositories for ActiveScan3Plus
Users that are interested in ActiveScan3Plus are comparing it to the libraries listed below
Sorting:
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- Generate pentest reports based on github issues.☆17Updated 2 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- Study about HQL injection exploitation.☆51Updated 9 years ago
- PHP tool to test XSS☆22Updated 5 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Windows Privesc Check☆20Updated 11 years ago
- A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.☆43Updated 5 years ago
- Various tools for managing bug bounty recon and exploration.☆47Updated 2 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆13Updated 6 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- A Pythonic wrapper to MassDNS☆24Updated 7 years ago
- A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!☆33Updated 6 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆32Updated 4 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- A simple grep user interface for searching code which can be used for SAST.☆8Updated 5 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 12 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.☆49Updated 2 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 6 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- Scan for open S3 buckets and dump☆37Updated 7 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated last year
- Just a silly recon tool that uses data from SSL Certificates to find potential host names☆30Updated 2 years ago
- cve-2014-0130 rails directory traversal vuln☆19Updated 8 years ago