synacktiv / HopLa
HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
☆712Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for HopLa
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆555Updated 3 years ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆354Updated last month
- Nuclei plugin for BurpSuite☆1,193Updated 2 months ago
- Because just a dark theme wasn't enough!☆552Updated 2 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆527Updated 9 months ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆218Updated 2 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆744Updated 7 months ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆804Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆611Updated 9 months ago
- fuzzuli is a url fuzzing tool that aims to find critical backup files by creating a dynamic wordlist based on the domain.☆736Updated last year
- ☆516Updated last year
- Java RMI Vulnerability Scanner☆828Updated 4 months ago
- BChecks collection for Burp Suite Professional and Burp Suite Enterprise Edition☆630Updated 2 weeks ago
- ☆398Updated 2 years ago
- JMX enumeration and attacking tool.☆392Updated last month
- Log4j jndi injects the Payload generator☆489Updated 2 years ago
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆364Updated 4 years ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆299Updated last year
- Grafana Unauthorized arbitrary file reading vulnerability☆354Updated last year
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆265Updated 5 months ago
- Nuclei Templates Collection☆908Updated 6 months ago
- jolokia-exploitation-toolkit☆278Updated 7 months ago
- HTTP Request Smuggling Detection Tool☆472Updated 11 months ago
- A cheatsheet for exploiting server-side SVG processors.☆695Updated 4 years ago
- Community curated list of nuclei templates for finding "unknown" security vulnerabilities.☆50Updated 6 months ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆585Updated 3 years ago
- A tiny project for generating SnakeYAML deserialization payloads☆563Updated 5 years ago
- Gotator is a tool to generate DNS wordlists through permutations.☆457Updated 2 years ago
- Nuclei templates written by us.☆266Updated 3 years ago