Alternatives and similar repositories for ssrf-sheriff

Users that are interested in ssrf-sheriff are comparing it to the libraries listed below

• daeken / SSRFTest
  SSRF testing tool
  ☆244Updated 2 years ago
• ameenmaali / qsfuzz
  qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
  ☆299Updated 2 years ago
• daeken / httprebind
  Automatic tool for DNS rebinding-based SSRF attacks
  ☆304Updated 5 years ago
• Static-Flow / gofingerprint
  GoFingerprint is a Go tool for taking a list of target web servers and matching their HTTP responses against a user defined list of fing…
  ☆205Updated 2 years ago
• cablej / FileChangeMonitor
  Continuous monitoring for JavaScript files
  ☆225Updated 5 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆331Updated 8 months ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆274Updated 5 years ago
• defparam / tiscripts
  Turbo Intruder Scripts
  ☆226Updated 5 years ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆317Updated 2 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆200Updated 4 years ago
• bytebutcher / burp-send-to
  Adds a customizable "Send to..."-context-menu to your BurpSuite.
  ☆163Updated 2 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆194Updated 4 years ago
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆278Updated 4 years ago
• JuxhinDB / OOB-Server
  A Bind9 server for pentesters to use for Out-of-Band vulnerabilities
  ☆195Updated 6 years ago
• ArturSS7 / TukTuk
  Tool for catching and logging different types of requests.
  ☆220Updated 4 years ago
• mazen160 / xless
  The Serverless Blind XSS App
  ☆340Updated 6 months ago
• allyomalley / dnsobserver
  A handy DNS service written in Go to aid in the detection of several types of blind vulnerabilities. It monitors a pentester's server for…
  ☆192Updated 5 years ago
• jaeles-project / jaeles-signatures
  Default signature for Jaeles Scanner
  ☆325Updated 3 years ago
• mazen160 / jwt-pwn
  Security Testing Scripts for JWT
  ☆322Updated 3 years ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆349Updated 4 years ago
• fransr / template-generator
  A simple variable based template editor using handlebarjs+strapdownjs. The idea is to use variables in markdown based files to easily rep…
  ☆255Updated 2 years ago
• codingo / crithit
  Takes a single wordlist item and tests it one by one over a large collection of websites before moving onto the next. Create signatures t…
  ☆215Updated 5 years ago
• fransr / bountyplz
  Automated security reporting from markdown templates (HackerOne and Bugcrowd are currently the platforms supported)
  ☆459Updated 6 years ago
• jobertabma / transformations
  ☆173Updated 2 years ago
• rastating / dnmasscan
  A script that can resolve an input file of domains and scan them with masscan
  ☆155Updated 5 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆225Updated last year
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆236Updated 6 months ago
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆255Updated 2 years ago
• Abss0x7tbh / bass
  Bass grabs you those "extra resolvers" you are missing out on when performing Active DNS enumeration. Add anywhere from 100-6k resolvers …
  ☆150Updated last year
• BuildHackSecure / gitscraper
  A tool which scrapes public github repositories for common naming conventions in variables, folders and files
  ☆296Updated last year