six2dez / burp-bounty-profiles
Burp Bounty profiles compilation, feel free to contribute!
☆147Updated 3 years ago
Alternatives and similar repositories for burp-bounty-profiles:
Users that are interested in burp-bounty-profiles are comparing it to the libraries listed below
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 4 years ago
- Hidden parameters discovery suite☆221Updated 2 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 3 years ago
- ☆144Updated 2 years ago
- Burpsuite plugin for Interact.sh☆210Updated 7 months ago
- CRLF and open redirect fuzzer☆113Updated 3 years ago
- A blind XSS detection and XSS data capture framework☆170Updated 2 weeks ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- Generates target specific word lists for Fuzzing with fuff☆107Updated 4 years ago
- A combined wordlists for files and directory discovery☆120Updated 3 years ago
- WordPress Plugin Update Confusion☆67Updated 3 years ago
- Bug Bounty stuffs, payloads, scripts, profiles, tips and tricks, ...☆145Updated 4 years ago
- Nuclei Templates - Here you will find the templates I use while hunting☆116Updated 3 years ago
- Tool to find the real IP behind CDNs/WAFs like cloudflare using passive recon by retrieving the favicon hash. For the same hash value, al…☆176Updated 4 years ago
- Match and Replace script used to automatically generate JSON option file to BurpSuite☆213Updated 5 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆110Updated last year
- Various Payload wordlists☆235Updated 4 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆168Updated 4 years ago
- Burp Bounty profiles☆82Updated 3 years ago
- Burp Extension for easily creating Wordlists☆210Updated 3 years ago
- All known and unknown public POC's for wordpress themes and plugins☆79Updated 3 years ago
- Secret and/or credential patterns used for gf.☆238Updated 2 years ago
- Bucky (An automatic S3 bucket discovery tool)☆194Updated 3 years ago
- Turbo Intruder Scripts☆222Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Adds a customizable "Send to..."-context-menu to your BurpSuite.☆152Updated 2 years ago
- Check AWS S3 instances for read/write/delete access☆120Updated 3 years ago
- A python based blind SQL injection exploitation script☆137Updated 5 years ago
- Just some public notes that can be useful and i want let the world knows.☆86Updated 4 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆120Updated 2 years ago