wish-i-was / femida

Related projects ⓘ

Alternatives and complementary repositories for femida

• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated last month
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆219Updated 3 years ago
• laconicwolf / burp-extensions
  A collection of scripts to extend Burp Suite
  ☆139Updated 5 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆235Updated 4 years ago
• Regala / burp-scope-monitor
  Burp Suite Extension to monitor new scope
  ☆195Updated 3 years ago
• cujanovic / CRLF-Injection-Payloads
  Payloads for CRLF Injection
  ☆216Updated last month
• In3tinct / See-SURF
  Python based scanner to find potential SSRF parameters
  ☆283Updated 7 months ago
• SpiderMate / B-XSSRF
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆295Updated 5 years ago
• dark-warlord14 / JSScanner
  You can read the writeup on this script here
  ☆267Updated 4 years ago
• random-robbie / Jira-Scan
  CVE-2017-9506 - SSRF
  ☆187Updated 2 years ago
• zseano / InputScanner
  ☆235Updated 6 years ago
• securityidiots / CollabOzark
  CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.
  ☆137Updated 5 years ago
• 0xspade / Automated-Scanner
  Trying to make automated recon for bug bounties
  ☆250Updated 3 years ago
• tijme / angularjs-csti-scanner
  Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
  ☆303Updated 3 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• JordyZomer / autoSubTakeover
  A tool used to check if a CNAME resolves to the scope address. If the CNAME resolves to a non-scope address it might be worth checking ou…
  ☆131Updated last year
• Damian89 / extended-ssrf-search
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆274Updated 3 years ago
• Bo0oM / ParamPamPam
  ☆271Updated 2 years ago
• root4loot / rescope
  Bugbounty scope tool
  ☆318Updated last month
• zseano / JS-Scan
  a .js scanner, built in php. designed to scrape urls and other info
  ☆210Updated 7 years ago
• mystech7 / Burp-Hunter
  XSS Hunter Burp Plugin
  ☆148Updated 6 years ago
• Shashank-In / TravisLeaks
  A tool to find sensitive keys and passwords in Travis logs
  ☆142Updated 3 years ago
• SilverPoision / a-full-list-of-wordlists
  this contain the burp pack
  ☆204Updated 7 years ago
• KathanP19 / gaussrf
  Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl and Filter Urls With OpenRedirection or SS…
  ☆166Updated 4 years ago
• bayotop / off-by-slash
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆253Updated 3 years ago
• daeken / SSRFTest
  SSRF testing tool
  ☆241Updated last year
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆300Updated 4 years ago
• dark-warlord14 / ffufplus
  You can read the writeup on this script here
  ☆191Updated 3 years ago