thegsoinfosec / BurpSuite_payloadsLinks
Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
☆81Updated 4 years ago
Alternatives and similar repositories for BurpSuite_payloads
Users that are interested in BurpSuite_payloads are comparing it to the libraries listed below
Sorting:
- All known and unknown public POC's for wordpress themes and plugins☆78Updated 3 years ago
- A combined wordlists for files and directory discovery☆125Updated 4 years ago
- 📚 An ultimate collection wordlists of the best-known CMS☆90Updated 11 months ago
- ☆76Updated last year
- A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.☆72Updated 10 months ago
- Some of my bug bounty tools☆51Updated 5 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆72Updated 3 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- 0x0p1n3r is set of combination of other tools and one line scripts to find subdomains easily and to check subdomain takeover☆57Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆132Updated 4 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆155Updated 4 years ago
- Host Header Injection Scanner☆47Updated 4 years ago
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆69Updated 4 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆62Updated last year
- Weaponizing Live CT logs for automated monitoring of assets☆134Updated 3 years ago
- The scripts I write to help me on my bug bounty hunting☆121Updated 3 years ago
- Simple fork from degoogle original project with bug hunting purposes☆89Updated 2 years ago
- Add headers to all Burp requests to bypass some WAF products☆42Updated last year
- KARMA is a simple bash script automation that can hit Shodan Premium API and find active IPs, ASN, Common Vulnerabilities, CVEs & Open Po…☆59Updated 3 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆35Updated 4 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆81Updated 2 years ago
- ☆53Updated 3 years ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆170Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆164Updated 4 years ago
- My Tools For Bug Bounty☆66Updated 8 months ago
- AWS S3 open bucket poc automated script.☆57Updated 3 years ago
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆100Updated 3 years ago
- Generates target specific word lists for Fuzzing with fuff☆110Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆59Updated 5 years ago