wallarm / fast-detects

Related projects: ⓘ

• ghsec / BBProfiles
  Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …
  ☆60Updated 2 years ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆76Updated 2 months ago
• 0xbharath / assets-from-spf
  A Python script to parse net blocks & domain names from SPF record
  ☆81Updated 4 years ago
• theblackturtle / wildcheck
  A simple tool to detect wildcards domain based on Amass's wildcards detector.
  ☆62Updated 3 years ago
• si9int / Subra
  A Web-UI for subdomain enumeration (subfinder)
  ☆53Updated 4 years ago
• PortSwigger / bypass-waf
  Add headers to all Burp requests to bypass some WAF products
  ☆37Updated 9 months ago
• Sy3Omda / burp-bounty
  Burp Bounty profiles
  ☆82Updated 2 years ago
• random-robbie / ssrf-finder
  Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.
  ☆108Updated 2 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆50Updated 2 years ago
• StefanMichielse / generate_xxe_payloads
  This tool is just after the first refactoring pushed. Original is from Will Vandevanter (BuffaloWill). Only rearrange the code which will…
  ☆32Updated 8 years ago
• InitRoot / BurpSQLTruncSanner
  Messy BurpSuite plugin for SQL Truncation vulnerabilities.
  ☆61Updated 4 years ago
• bug-knr / KNR-XSS-Payloads
  ☆53Updated this week
• Healdb / Gather
  URL Screenshot Utility
  ☆27Updated last year
• MrMax4o4 / Hunting-Tips
  ☆45Updated this week
• BlackFan / WEB-INF-dict
  List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.
  ☆81Updated 6 years ago
• Leoid / chru
  ☆30Updated 2 years ago
• Regala / burp-subdomains
  Burp Suite extension to easily export sub domains
  ☆44Updated 4 years ago
• sorokinpf / ApiWordlistGenerator
  Generate wordlists for fuzzing API method names
  ☆53Updated 3 years ago
• codewatchorg / Burp-AnonymousCloud
  Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities
  ☆41Updated last year
• Rhynorater / reports
  ☆56Updated 2 months ago
• l4yton / js-parse
  ☆33Updated this week
• tehryanx / sprawl
  Expand urls into one url for each path depth
  ☆32Updated 4 years ago
• arbazkiraak / BurpBLH
  Broken Link Hijacking Burp Extension
  ☆54Updated 5 years ago
• topavankumarj / CORS-Exploit-Script
  ☆38Updated last year
• 0xbharath / domains-from-csp
  A script to extract domain names from Content Security Policy(CSP) headers
  ☆105Updated 5 years ago
• arbazkiraak / LinksDumper
  Extract (links/possible endpoints) from responses & filter them via decoding/sorting
  ☆84Updated 5 years ago
• ethicalhackingplayground / Zin
  A Payload Injector for bugbounties written in go
  ☆72Updated 4 years ago
• giteshnxtlvl / YourNextBugTip
  ☆87Updated this week
• Droidzzzio / EnumerationList
  This Repo contains wordlist for subdomain enumeration , php file path, html file path, and js file path
  ☆102Updated 4 years ago