BurpSuite插件,调用外部js处理payload,可以有效解决前端js对某些字段加密的问题,以及做fuzz时,处理逻辑可以在js文件中定义,不必写python、java等代码,灵活高效,你值得拥有。
☆28Aug 20, 2020Updated 5 years ago
Alternatives and similar repositories for JSRainbow
Users that are interested in JSRainbow are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 基于AI的BurpSuite漏洞分析插件☆11Sep 21, 2023Updated 2 years ago
- 蚁剑反制马☆13Aug 16, 2023Updated 2 years ago
- 一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。☆16Dec 26, 2018Updated 7 years ago
- 反连助手:发现可以映射本地端口的互联网IP,本工具可从hunter、quake、fofa等网络空间测绘平台,收集、探测互联网IP,并通过配置文件中的端口映射关系,把本地端口映射到互联网IP指定的端口,以便反弹shell等场景下使用。☆23Sep 26, 2024Updated last year
- JSHunter-一款针对于前端的未授权访问扫描工具☆84Apr 27, 2025Updated 10 months ago
- 一个Burpsuite插件,用于检测隐藏的XSS☆40Mar 31, 2019Updated 6 years ago
- scan rtsp☆14Dec 27, 2021Updated 4 years ago
- 微信小程序批量反编译☆61Jul 15, 2021Updated 4 years ago
- BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the …☆15Jan 12, 2026Updated 2 months ago
- BurpSuite Rpc 算法转发插件☆17Jan 4, 2023Updated 3 years ago
- 一款被动扫描ssrf的burpsuite插件☆20Dec 30, 2022Updated 3 years ago
- 泰坦字典生成器-非常全面的密码字典生成器☆80Nov 28, 2023Updated 2 years ago
- 扫描常见未授权访问(改)(redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop)☆15Aug 4, 2020Updated 5 years ago
- fscan修改版☆134Jun 4, 2022Updated 3 years ago
- Xposed的一个Hook模块,用于java加密算法破解☆26Sep 16, 2022Updated 3 years ago
- remote execute js when debugger.paused☆47Sep 6, 2023Updated 2 years ago
- 一个可快速“搬运”cookie的Burp Suite插件☆25Apr 13, 2018Updated 7 years ago
- chrome和edge查看exif有效信息的插件☆12Mar 3, 2025Updated last year
- deadpool代理池工具,可从hunter、quake、fofa等网络空间测绘平台取高质量socks5代理,或本地导入socks5代理,轮询使用代理进行流量转发。☆669Apr 21, 2025Updated 11 months ago
- 爆破字典☆20Nov 15, 2017Updated 8 years ago
- 【原蚁逅平台1.0】 集在线WEBTOOLS、BLOG以及一款基于socket.io开发的全新XSS平台☆17Mar 6, 2016Updated 10 years ago
- 检测host头攻击的Burpsuite被动扫描插件,Burpsuite passive scanning plugin responsible for detecting host header attack☆11Apr 28, 2023Updated 2 years ago
- 离线文档库☆14Jun 17, 2020Updated 5 years ago
- Open Source XSS exploitation tool. using http proxy to access the browser which executed js. [Engineering Experimental]☆36Nov 22, 2024Updated last year
- 自改自用的一些巡风插件☆23Apr 4, 2019Updated 6 years ago
- BurpSuite 插件,自动格式化 response 中的 json/jsonp 数据,同时也会对 Unicode 进行解码☆10Feb 19, 2020Updated 6 years ago
- java 内存马系列 实现(Servlets 、组件、Agent)☆10Mar 7, 2022Updated 4 years ago
- 改造一个基于jrmp的AMF反序列化利用工具☆16Jul 7, 2022Updated 3 years ago
- Bypass国内主流杀软☆43May 9, 2022Updated 3 years ago
- A plugin that allows you execute python and get return to BurpSuite.☆435Jul 12, 2025Updated 8 months ago
- 规则组合子域名字典生成☆30Mar 5, 2020Updated 6 years ago
- PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registra…☆38Dec 28, 2025Updated 2 months ago
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆57May 30, 2023Updated 2 years ago
- 有一些渗透太繁琐重复,把前面的一些通用处理用脚本统一解决;如:子域名信息�收集,版本检测,端口扫描等☆12Mar 10, 2019Updated 7 years ago
- wx小程序辅助渗透-自动化☆11May 15, 2024Updated last year
- 个人使用的一款Web CMS指纹扫描器☆25Aug 4, 2020Updated 5 years ago
- 指纹识别、目录扫描,支持主动和被动☆139Feb 10, 2026Updated last month
- 由ABC_123编写的Web日志分析工具☆123Feb 4, 2026Updated last month
- 把jsp的cmdshell升级为冰蝎一句话☆11Sep 23, 2019Updated 6 years ago