tombstoneghost / TIWAP
Totally Insecure Web Application Project (TIWAP)
☆170Updated last year
Alternatives and similar repositories for TIWAP:
Users that are interested in TIWAP are comparing it to the libraries listed below
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆182Updated 3 years ago
- Small Tool written based on chaos from projectdiscovery.io☆170Updated 4 months ago
- XSSMap 是一款基于 Python3 开发用于检测 XSS 漏洞的工具☆261Updated 4 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆566Updated 4 years ago
- this repository is a docker containing some "XSS vulnerability" challenges and bypass examples.☆115Updated 2 years ago
- jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).☆267Updated last month
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.☆88Updated last year
- ActiveScan++ Burp Suite Plugin☆214Updated 3 weeks ago
- a lightweight, flexible and novel open source poc verification framework☆233Updated 2 years ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆190Updated 8 months ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆173Updated 9 months ago
- Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.☆391Updated 2 years ago
- essential templates for kenzer [DEPRECATED]☆111Updated last year
- A cli for cracking, testing vulnerabilities on Json Web Token(JWT)☆131Updated this week
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆160Updated last year
- Monitoring exploits & references for CVEs☆229Updated last year
- ☆113Updated 2 years ago
- Nuclei templates for K8S security scanning☆101Updated 3 years ago
- ☆181Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆233Updated 2 months ago
- A more useful CSRF PoC generator on Burp Suite☆87Updated 2 years ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆360Updated 4 months ago
- Log4j jndi injects the Payload generator☆487Updated 3 years ago
- Collection of penetration testing tools☆81Updated 4 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆164Updated 5 years ago
- Remote Code Injection In Log4j☆463Updated 3 years ago
- automated web assets enumeration & scanning [DEPRECATED]☆287Updated last year
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆303Updated last year
- Encoder to bypass WAF filters using XOR operations.☆248Updated 2 years ago
- ☆316Updated last month