Alternatives and similar repositories for ssrf-sheriff:

Users that are interested in ssrf-sheriff are comparing it to the libraries listed below

• daeken / SSRFTest
  SSRF testing tool
  ☆245Updated 2 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆300Updated 2 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆297Updated 4 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆204Updated last year
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆157Updated 4 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆325Updated 2 months ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆222Updated 4 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆342Updated 3 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆451Updated 5 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆197Updated 3 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆270Updated 4 years ago
• subfinder / goaltdns
  A permutation generation tool written in golang
  ☆210Updated 5 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆275Updated 4 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆219Updated 5 years ago
• lc / secretz
  secretz, minimizing the large attack surface of Travis CI
  ☆325Updated 2 years ago
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆253Updated last year
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆208Updated 4 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆223Updated 4 months ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆400Updated last year
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆189Updated 4 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆152Updated 2 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆193Updated 3 years ago
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆212Updated 7 years ago
• GainSec / GoldenNuggets-1
  Burp Extension for easily creating Wordlists
  ☆211Updated 3 years ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆320Updated 2 years ago
• LewisArdern / bXSS
  bXSS is a utility which can be used by bug hunters and organizations to identify Blind Cross-Site Scripting.
  ☆527Updated last year
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆299Updated 4 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago