summitt/sploits

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/summitt/sploits)

summitt / sploits

Quickly add http and https domains to BurpSuite's scope with all paths.

☆16

Alternatives and similar repositories for sploits

Users that are interested in sploits are comparing it to the libraries listed below

Sorting:

r3motecontrol / Sharp-Suite-CompiledBinaries
View on GitHub
Compiled Binaries for Sharp Suite
☆15Dec 28, 2019Updated 6 years ago
augustd / burp-suite-token-fetcher
View on GitHub
Burp Extender to add unique form tokens to scanner requests.
☆13Nov 5, 2024Updated last year
augustd / burp-suite-gwt-scan
View on GitHub
Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
☆13Sep 24, 2015Updated 10 years ago
chrispetrou / pypentesting
View on GitHub
python tools to assist in penetration testing
☆14Jan 19, 2026Updated last month
sdcampbell / phpLFI
View on GitHub
Tests for LFI in PHP apps and automates the process of leveraging LFI's to recursively download source code and discover new files via in…
☆13Sep 29, 2022Updated 3 years ago
an00byss / TheCl0n3r
View on GitHub
TheCl0n3r will allow you to download and manage your git repositories.
☆51Oct 22, 2020Updated 5 years ago
b0n1t0 / gSAST
View on GitHub
gSAST - Grep Static Analysis Security Tool
☆13Mar 30, 2024Updated last year
raise-isayan / BigIPDiscover
View on GitHub
It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…
☆16Dec 8, 2025Updated 2 months ago
mux0x / mulef
View on GitHub
your bestfried for finding LinkedIn Employees on github
☆15Mar 28, 2023Updated 2 years ago
jeffmcjunkin / endgame
View on GitHub
An AWS Pentesting tool that lets you use one-liner commands to backdoor an AWS account's resources with a rogue AWS account - or share th…
☆14Feb 16, 2021Updated 5 years ago
augustd / burp-suite-utils
View on GitHub
Utilities for creating Burp Suite Extensions.
☆21Oct 31, 2024Updated last year
sergeyklay / dotfiles
View on GitHub
All my dotfiles that I port around from system to system with me
☆18Updated this week
stufus / shellcode-implant-stub
View on GitHub
Source code in Win32 ASM and C for a shellcode execution wrapper designed to mitigate the risk of shellcode execution on a host other tha…
☆19Apr 30, 2016Updated 9 years ago
tasooshi / exfilkit
View on GitHub
Data exfiltration utility for testing detection capabilities
☆56Jan 13, 2022Updated 4 years ago
OCSAF / free-open-auditor
View on GitHub
Free and open cyber-security auditing tool with collective intelligence
☆21Nov 3, 2019Updated 6 years ago
sliverarmory / sliver-script
View on GitHub
TypeScript/JavaScript client libraries for Sliver
☆24Feb 15, 2026Updated 2 weeks ago
Bo0oM / services-names-wordlist
View on GitHub
services-names-wordlist
☆84Oct 31, 2025Updated 4 months ago
NullArray / PyParser-CVE
View on GitHub
Multi source CVE/exploit parser.
☆27Aug 30, 2017Updated 8 years ago
Static-Flow / BurpSuiteTeamServer
View on GitHub
This is the Go Server that relays all HTTP requests and responses between clients.
☆28Oct 19, 2023Updated 2 years ago
staaldraad / metasploit
View on GitHub
Metasploit things, modules, plugins, exploits
☆26Aug 8, 2014Updated 11 years ago
ahhh / phish_composer
View on GitHub
Automatically spin up infra for phishing
☆64Feb 1, 2020Updated 6 years ago
ameenmaali / qsinject
View on GitHub
qsinject (Query String Inject) is a tool that allows you to quickly substitute query string values with regex matches, one-at-a-time.
☆30May 6, 2020Updated 5 years ago
sebastian-mora / AWS-Loot
View on GitHub
Pull secrets from an AWS environment
☆67Feb 2, 2020Updated 6 years ago
pry0cc / prys-hacks
View on GitHub
A set of helper scripts, to be used with jlib to help parsing domains.
☆27Oct 21, 2020Updated 5 years ago
wrvenkat / burp-multistep-csrf-poc
View on GitHub
Burp extension to generate multi-step CSRF POC.
☆31Sep 23, 2019Updated 6 years ago
aress31 / google-authenticator
View on GitHub
Burp Suite plugin that dynamically generates Google 2FA codes for use in session handling rules (approved by PortSwigger for inclusion in…
☆29Sep 4, 2025Updated 5 months ago
LimberDuck / nessus-cheat-sheet
View on GitHub
Nessus Cheat Sheet in HTML, PDF, PNG, ADOC
☆12Apr 10, 2022Updated 3 years ago
Andromeda1957 / LinPwn
View on GitHub
Interactive Post Exploitation Tool
☆37Oct 1, 2019Updated 6 years ago
silentsignal / burp-collab-gw
View on GitHub
Simple socket-based gateway to the Burp Collaborator
☆34Nov 23, 2016Updated 9 years ago
megadose / hunter-maltego
View on GitHub
Maltego transform for hunter.io
☆40Apr 28, 2021Updated 4 years ago
k4mpr3t / web-for-pentester-I
View on GitHub
Web for Pentester I
☆11Sep 21, 2018Updated 7 years ago
Zusyaku / Script-Deface-Keren
View on GitHub
Script Deface Keren Dan Berkelas
☆10Jun 26, 2022Updated 3 years ago
Anon-Exploiter / infosecinstitute-dl
View on GitHub
A small and dirty python3 based script to download courses from Infosec Institute.
☆12Oct 6, 2021Updated 4 years ago
poliva / WifiStaticArp
View on GitHub
Android app to set an static ARP entry on the gateway's MAC address when you connect to a WIFI network
☆11Nov 23, 2012Updated 13 years ago
0xbharath / assets-from-spf
View on GitHub
A Python script to parse net blocks & domain names from SPF record
☆85Jun 2, 2020Updated 5 years ago
leobeosab / sharingan
View on GitHub
Offensive Security recon tool
☆91Aug 27, 2021Updated 4 years ago
adanalvarez / SimpleAutoBurp
View on GitHub
Python script to launch burp scans automatically
☆32Jul 18, 2021Updated 4 years ago
electroglyph / anti_defender
View on GitHub
A slightly more fun way to disable windows defender
☆52May 4, 2025Updated 9 months ago
b1naryxx / AzureAD-Autologon-Password-Sprayer
View on GitHub
Multi-thread AzureAD Autologon SSO Password Sprayer.
☆37Oct 9, 2021Updated 4 years ago