Chrome extension for automating CSPT discovery
☆138Dec 23, 2025Updated 2 months ago
Alternatives and similar repositories for gecko
Users that are interested in gecko are comparing it to the libraries listed below
Sorting:
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆160Jul 2, 2024Updated last year
- Javascript file change monitoring☆17Nov 11, 2025Updated 3 months ago
- Useful configurations for the DomLogger++ extension☆48Sep 7, 2024Updated last year
- ☆179Oct 7, 2024Updated last year
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- A browser extension that allows you to monitor, intercept, and debug JavaScript sinks based on customizable configurations.☆773Dec 9, 2025Updated 2 months ago
- Additional active scan checks for BURP☆28Oct 3, 2024Updated last year
- ☆25May 21, 2025Updated 9 months ago
- Get list of subsidiaries for a selected company☆31Dec 21, 2024Updated last year
- ☆24Jan 26, 2021Updated 5 years ago
- This Tool To Test Machine Keys In View State☆85Oct 11, 2024Updated last year
- A CLI tool to extract, analyze, and filter JavaScript links from web pages or URLs, with regex matching and structured JSON output.☆19Jan 6, 2025Updated last year
- jxscout superpowers JavaScript analysis for security researchers☆422Feb 15, 2026Updated 2 weeks ago
- Finds graphql queries in javascript files☆69May 18, 2024Updated last year
- A collection of Turbo Intruder scripts.☆71Feb 1, 2025Updated last year
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆68Jan 6, 2026Updated last month
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆161Feb 11, 2026Updated 3 weeks ago
- jsluice++ is a Burp Suite extension designed for passive and active scanning of JavaScript traffic using the CLI tool jsluice☆291Apr 9, 2024Updated last year
- MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.☆286Oct 5, 2024Updated last year
- ai-based domain name generation☆120Feb 3, 2025Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆30Nov 30, 2025Updated 3 months ago
- CT Log Scanner☆517Dec 26, 2025Updated 2 months ago
- Gather results of dorks across a number of search engines☆200Jan 22, 2026Updated last month
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆157Feb 25, 2026Updated last week
- The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.☆456Oct 3, 2023Updated 2 years ago
- ☆18Jul 21, 2025Updated 7 months ago
- Techniques / Tips and tricks for finding sensitive data exposures in Github for Penetration Testers / Bug Bounty Hunters☆17Aug 1, 2020Updated 5 years ago
- ☆522Apr 29, 2024Updated last year
- Unsecure time-based secret exploitation and Sandwich attack implementation Resources☆149Dec 9, 2024Updated last year
- Blind XSS SVG☆10Mar 27, 2023Updated 2 years ago
- HTTP testing platform for security researchers☆20Updated this week
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆121Sep 12, 2025Updated 5 months ago
- Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.☆559Mar 8, 2025Updated 11 months ago
- ☆181Oct 15, 2024Updated last year
- Extract URLs, paths, secrets, and other interesting bits from JavaScript☆1,773May 22, 2024Updated last year
- CSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT).☆153Mar 31, 2025Updated 11 months ago
- REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications☆1,294Aug 7, 2025Updated 6 months ago
- Process URLs and remove duplicate query parameters.☆27Mar 19, 2024Updated last year