trickest / find-gh-poc
Find CVE PoCs on GitHub
☆136Updated 11 months ago
Related projects: ⓘ
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆250Updated 2 months ago
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆175Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- A GraphQL enumeration and extraction tool☆127Updated last year
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆151Updated 3 weeks ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆169Updated 3 months ago
- Source Code Management Attack Toolkit☆209Updated last year
- A Burp Suite Extension for pentester and bug bounty hunters an to maintain checklist, map flows, write test cases and track vulnerabiliti…☆110Updated last year
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆115Updated last year
- 🔭 Collection of regexp pattern for security passive scanning☆110Updated last year
- Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.☆112Updated 2 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- Build your own reconnaissance system with Osmedeus Next Generation☆177Updated 3 months ago
- ☆72Updated 4 months ago
- Web dashboard for Interactsh client☆188Updated this week
- ☆70Updated 2 months ago
- A streamlined tool for discovering TLDs, associated domains, and related domain names.☆103Updated this week
- A simple tool that helps to find assets/domains based on the Google Analytics ID.☆166Updated 4 months ago
- Nuclear Pond is a utility leveraging Nuclei to perform internet wide scans for the cost of a cup of coffee.☆169Updated 8 months ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆162Updated 4 months ago
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- Generate tens of thousands of subdomain combinations in a matter of seconds☆251Updated 11 months ago
- Community Workflow for the Osmedeus Engine that describes basic reconnaissance methodology for you to build your own☆67Updated 4 months ago
- ☆173Updated 6 months ago
- This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.☆237Updated last year
- Black box fuzzer for web applications☆395Updated 2 months ago
- Made your bugbounty subdomains reconnaissance easier with Hunt3r the web application reconnaissance framework☆161Updated last year
- Repository to store exploits created by Assetnotes Security Research team☆175Updated 10 months ago
- Check AWS S3 instances for read/write/delete access☆119Updated 2 years ago
- A blazing fast Blind SQL Injection optimization and automation framework.☆115Updated last month