thegsoinfosec / BurpSuite_payloads
Payloads to be used with Burp Suite Intruder. (Originally found on swisskeyrepo-PayloadsAllTheThings)
☆75Updated 4 years ago
Alternatives and similar repositories for BurpSuite_payloads:
Users that are interested in BurpSuite_payloads are comparing it to the libraries listed below
- A simple Bash one liner with aim to automate CRLF vulnerability scanning.☆68Updated 4 years ago
- All known and unknown public POC's for wordpress themes and plugins☆79Updated 3 years ago
- ☆59Updated 7 months ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Sometimes we want to fuzz a set of sub-domain URLs with a common wordlist. Fuzzing them one by one is a tedious task, not to mention the …☆51Updated 3 years ago
- A combined wordlists for files and directory discovery☆120Updated 3 years ago
- golang tool to scan domains or single domains with know security issues against xmlrpc☆60Updated last year
- A collection of over 5.1 million sub-domains and assets belonging to public bug bounty programs, compiled into a repo, for performing bul…☆98Updated 3 years ago
- This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path☆103Updated 4 years ago
- SecretFinder - A python script for find sensitive data (apikeys, accesstoken,jwt,..) and search anything on javascript files☆36Updated 4 years ago
- Small tool to automate SSRF wordpress and XMLRPC finder☆80Updated 2 years ago
- Simple fork from degoogle original project with bug hunting purposes☆88Updated 2 years ago
- SQLi Query Tampering extends and adds custom Payload Generator/Processor in Burp Suite's Intruder. This extension gives you the flexibil…☆153Updated 4 years ago
- A docker image which will enumerate, sort, unique and resolve the results of various subdomains enumeration tools.☆70Updated 6 months ago
- ☆74Updated 9 months ago
- Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…☆168Updated 4 years ago
- part of my wordlist to bruteforce DNS to find subdoamains.☆62Updated 3 years ago
- A tool for append URLs, skipping duplicates/paths & combine parameters.☆120Updated 2 years ago
- Dotmil subdomain discovery tool that scrapes domains from official DoD website directories and certificate transparency logs☆96Updated 4 years ago
- Generates target specific word lists for Fuzzing with fuff☆107Updated 4 years ago
- API Pentesting notes.☆96Updated 3 months ago
- Misc bounty and vulndisc things☆83Updated 4 years ago
- A simple Swagger-ui scanner that can detect old versions vulnerable to various XSS attacks☆57Updated 5 years ago
- ☆52Updated 3 years ago
- Get the scope of your bugcrowd programs☆66Updated 4 years ago
- A Payload Injector for bugbounties written in go☆70Updated 4 years ago
- A Python based scanner to find potential SSRF parameters in a web application.☆71Updated 3 years ago
- Recon Custom WordList Ganerator☆56Updated 4 years ago
- Messy BurpSuite plugin for SQL Truncation vulnerabilities.☆63Updated 4 years ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆163Updated 3 years ago