BurpSuite插件,调用外部js处理payload,可以有效解决前端js对某些字段加密的问题,以及做fuzz时,处理逻辑可以在js文件中定义,不必写python、java等代码,灵活高效,你值得拥有。
☆28Aug 20, 2020Updated 5 years ago
Alternatives and similar repositories for JSRainbow
Users that are interested in JSRainbow are comparing it to the libraries listed below
Sorting:
- 一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。☆16Dec 26, 2018Updated 7 years ago
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- 一个Burpsuite插件,用于检测隐藏的XSS☆40Mar 31, 2019Updated 6 years ago
- 微信小程序批量反编译☆60Jul 15, 2021Updated 4 years ago
- 蚁剑反制马☆13Aug 16, 2023Updated 2 years ago
- BurpSuite Rpc 算法转发插件☆17Jan 4, 2023Updated 3 years ago
- BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the …☆15Jan 12, 2026Updated last month
- chrome和edge查看exif有效信息的插件☆13Mar 3, 2025Updated last year
- 离线文档库☆14Jun 17, 2020Updated 5 years ago
- 有一些渗透太繁琐重复,把前面的一些通用处理用脚本统一解决;如:子域名信息收集,版本检测,端口扫描等☆12Mar 10, 2019Updated 6 years ago
- JSHunter-一款针对于前端的未授权访问扫描工具☆83Apr 27, 2025Updated 10 months ago
- 一款被动扫描ssrf的burpsuite插件☆21Dec 30, 2022Updated 3 years ago
- zscan的poc扫描模块,独立出来是为了方便以后升级xray poc格式的v2版本☆15Jan 12, 2022Updated 4 years ago
- scan rtsp☆14Dec 27, 2021Updated 4 years ago
- weblogic wls9-async 反序列利用图形版客户端 CNVD-C-2019-48814☆13May 9, 2019Updated 6 years ago
- 【原蚁逅平台1.0】 集在线WEBTOOLS、BLOG以及一款基于socket.io开发的全新XSS平台☆17Mar 6, 2016Updated 9 years ago
- 泰坦字典生成器-非常全面的密码字典生成器☆79Nov 28, 2023Updated 2 years ago
- 扫描常见未授权访问(改)(redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop)☆15Aug 4, 2020Updated 5 years ago
- Alias for storing ffuf results☆20May 23, 2020Updated 5 years ago
- 子域名监控式漏扫☆40Jul 7, 2020Updated 5 years ago
- ☆22Mar 25, 2018Updated 7 years ago
- 反连助手:发现��可以映射本地端口的互联网IP,本工具可从hunter、quake、fofa等网络空间测绘平台,收集、探测互联网IP,并通过配置文件中的端口映射关系,把本地端口映射到互联网IP指定的端口,以便反弹shell等场景下使用。☆23Sep 26, 2024Updated last year
- remote execute js when debugger.paused☆47Sep 6, 2023Updated 2 years ago
- 爆破字典☆20Nov 15, 2017Updated 8 years ago
- 添加图标以及版本信息,实现自动化bypass360QVM☆25Jul 16, 2025Updated 7 months ago
- fscan修改版☆134Jun 4, 2022Updated 3 years ago
- Endpoint monitor tool☆21Sep 16, 2020Updated 5 years ago
- 自改自用的一些巡风插件☆23Apr 4, 2019Updated 6 years ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆57May 30, 2023Updated 2 years ago
- 指纹识别、目录扫描,支持主动和被动☆136Feb 10, 2026Updated 3 weeks ago
- asnap aims to render recon phase easier by providing updated data about which companies owns which ipv4 or ipv6 addresses and allows the …☆25Jan 6, 2021Updated 5 years ago
- 一个可快速“搬运”cookie的Burp Suite插件☆25Apr 13, 2018Updated 7 years ago
- spider web site request traffic to xray scanner.☆24Jun 23, 2020Updated 5 years ago
- BurpHttpHelper是一款Burpsuite插件,主要用于简化和解决Burpsuite对Http的一些操作.☆107Jan 22, 2023Updated 3 years ago
- awd比赛用到的脚本☆57Apr 22, 2019Updated 6 years ago
- Android渗透测试脚本, by Tr0e.☆29Jun 19, 2024Updated last year
- 一款模仿bugscan的漏洞扫描器☆27Jul 3, 2017Updated 8 years ago
- A plugin that allows you execute python and get return to BurpSuite.☆435Jul 12, 2025Updated 7 months ago
- Burp Suite参数收集插件(Python)☆27Dec 10, 2021Updated 4 years ago