synacktiv / HopLaLinks
HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite
☆780Updated last month
Alternatives and similar repositories for HopLa
Users that are interested in HopLa are comparing it to the libraries listed below
Sorting:
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆596Updated 4 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆382Updated last week
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆260Updated 10 months ago
- Because just a dark theme wasn't enough!☆574Updated 9 months ago
- Nuclei plugin for BurpSuite☆1,290Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆650Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite DAST☆719Updated last month
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- ☆411Updated 3 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆792Updated last year
- Java RMI Vulnerability Scanner☆894Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆303Updated 2 years ago
- Grafana Unauthorized arbitrary file reading vulnerability☆365Updated 2 years ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆910Updated 2 years ago
- A cheatsheet for exploiting server-side SVG processors.☆770Updated 5 years ago
- ☆523Updated 2 years ago
- HTTP Request Smuggling Detection Tool☆524Updated last year
- JMX enumeration and attacking tool.☆467Updated 3 months ago
- Log4Shell scanner for Burp Suite☆486Updated 2 years ago
- ActiveScan++ Burp Suite Plugin☆232Updated last month
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆275Updated 8 months ago
- Log4j jndi injects the Payload generator☆489Updated 3 years ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆858Updated 2 weeks ago
- Burp Extension for a passive scanning JS files for endpoint links.☆175Updated 6 years ago
- ☆218Updated last week
- project-blacklist3r☆585Updated 6 months ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆206Updated last year
- jolokia-exploitation-toolkit☆299Updated 9 months ago
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆401Updated 5 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆640Updated last year