synacktiv / HopLa
HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
☆743Updated 3 years ago
Alternatives and similar repositories for HopLa:
Users that are interested in HopLa are comparing it to the libraries listed below
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆576Updated 4 years ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆369Updated last week
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆243Updated 4 months ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆599Updated last year
- Nuclei plugin for BurpSuite☆1,231Updated 7 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆861Updated 3 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆773Updated last year
- Because just a dark theme wasn't enough!☆560Updated 4 months ago
- List DTDs and generate XXE payloads using those local DTDs.☆624Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated last year
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆808Updated last year
- BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition☆683Updated last week
- Java RMI Vulnerability Scanner☆856Updated 9 months ago
- ☆403Updated 3 years ago
- Subdomains analysis and generation tool. Reveal the hidden!☆237Updated last month
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆64Updated 11 months ago
- jolokia-exploitation-toolkit☆287Updated 3 months ago
- Grafana Unauthorized arbitrary file reading vulnerability☆356Updated 2 years ago
- ☆519Updated last year
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆270Updated 3 months ago
- a lightweight, flexible and novel open source poc verification framework☆234Updated 2 years ago
- Burp Extension to find potential endpoints, parameters, and generate a custom target wordlist☆1,339Updated last month
- HTTP Request Smuggling Detection Tool☆492Updated last year
- Burp Extension for a passive scanning JS files for endpoint links.☆169Updated 5 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆595Updated 4 years ago
- Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…☆372Updated this week
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆197Updated 10 months ago
- Burp Extensions Api☆161Updated 2 weeks ago
- JMX enumeration and attacking tool.☆429Updated 3 weeks ago
- Black box fuzzer for web applications☆425Updated 9 months ago