Burp extension to generate multi-step CSRF POC.
☆31Sep 23, 2019Updated 6 years ago
Alternatives and similar repositories for burp-multistep-csrf-poc
Users that are interested in burp-multistep-csrf-poc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Burp Scanner extension to fingerprint and actively scan instances of the Adobe Experience Manager CMS. It checks the website for common m…☆77Mar 22, 2024Updated 2 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Mar 15, 2021Updated 5 years ago
- Simple tools to handle string and generate subdomain permutations☆15Jun 8, 2022Updated 4 years ago
- Fork of proxychains with support of multiple chains. Chains are selected according to filters assigned to them.☆17Nov 26, 2013Updated 12 years ago
- Automatically identify serialization issues in PHP Frameworks by means of an Burp Suite active scan☆43Jul 7, 2025Updated 11 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Store the ATD/openapi/protobuf/... interfaces between semgrep components☆19Updated this week
- ☆12Feb 18, 2022Updated 4 years ago
- A tool to download program information from Bugcrowd, for use by researchers to compare programs they are eligible to participate in☆21Dec 22, 2022Updated 3 years ago
- A Burp extension to enable modification of FIX messages when relayed from MitM_Relay☆16Feb 10, 2023Updated 3 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆20Dec 9, 2021Updated 4 years ago
- BurpSuite extension that helps find user input in a GWT body.☆13May 29, 2020Updated 6 years ago
- It contain google dork to find the wsdl file.☆13May 27, 2020Updated 6 years ago
- Combine words from two wordlist files and concatenate them with an optional delimiter☆40Sep 25, 2023Updated 2 years ago
- Advanced Sub-domain Enumerator☆10Mar 14, 2020Updated 6 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆37Aug 27, 2022Updated 3 years ago
- A tool to find redirection chains in multiple URLs☆79Jan 1, 2025Updated last year
- This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.☆59May 30, 2023Updated 3 years ago
- Custom semgrep rules registry☆14Aug 23, 2022Updated 3 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆178Oct 26, 2024Updated last year
- ☆11Dec 25, 2020Updated 5 years ago
- This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …☆24Mar 4, 2020Updated 6 years ago
- Generates permutations, alterations and mutations of subdomains. Auto Resolve what we find.☆11Dec 8, 2020Updated 5 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Aug 2, 2019Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Get all possible href | src | url from target url or domain☆40Aug 5, 2020Updated 5 years ago
- A collection of utilities to simplify the creation of Burp Suite plugins☆23Dec 14, 2023Updated 2 years ago
- A collection of simple tools and poc-builders☆39May 28, 2026Updated 3 weeks ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Jan 6, 2021Updated 5 years ago
- Bucket Flaws ( S3 Bucket Mass Scanner ): A Simple Lightweight Script to Check for Common S3 Bucket Misconfigurations☆58Jul 26, 2020Updated 5 years ago
- Expand urls into one url for each path depth☆31Jul 29, 2020Updated 5 years ago
- PostMessage extension☆101Aug 28, 2019Updated 6 years ago
- Scraping creds using Github API and truffleHog☆11Dec 13, 2023Updated 2 years ago
- This little script for gathering chaos.projectdiscovery.io recon data in an organized way and finding the daily differences on it☆18Aug 9, 2020Updated 5 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- ☆36Jul 15, 2020Updated 5 years ago
- burpsuite extension for check and extract sensitive request parameter☆117Nov 29, 2020Updated 5 years ago
- Built on a lazy Sunday after seeing this tweet (https://twitter.com/intigriti/status/1272145863868104705?s=20) I present to you, Paramete…☆52Jun 14, 2020Updated 6 years ago
- Extract JavaScript files from burp suite project with ease.☆97Feb 19, 2022Updated 4 years ago
- NodeJS script to extract assets for the Apple bug bounty program from their security acknowledgments page for bug bounty recon.☆78Nov 5, 2022Updated 3 years ago
- ☆54Dec 3, 2025Updated 6 months ago
- Rclone iCloud Drive (icloudddrive) authenticator☆36Jan 4, 2026Updated 5 months ago