z3dc0ps / BBSSRF
BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection
☆38Updated 2 years ago
Alternatives and similar repositories for BBSSRF:
Users that are interested in BBSSRF are comparing it to the libraries listed below
- Enhanced 403 bypass header☆21Updated 2 years ago
- Resolvers updated daily for reconftw☆47Updated 2 years ago
- A Go tool that gets the newest PRs from projectdiscovery/nuclei-templates.☆54Updated last year
- IIS shortname scanner + bruteforce☆52Updated last year
- ☆21Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆16Updated 4 years ago
- A simple automation tool to detect lfi, rce and ssti vulnerability☆55Updated 3 years ago
- JSNotify is a Python script designed to monitor JavaScript files in a specified directory for changes. This tool can be used by developer…☆18Updated last year
- Tool for testing reflections in the HTTP responses☆60Updated last year
- A repository to host the subdomain wordlists from my blog https://medium.com/@nynan/what-i-learnt-from-reading-217-subdomain-takeover-bug…☆40Updated 2 years ago
- vīlicus is a bug bounty api dashboard☆40Updated last year
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆49Updated 2 years ago
- A demo PHP application used to exercise SQL injection techniques in a safe, local Docker environment☆44Updated 10 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆59Updated last year
- ☆12Updated 3 years ago
- XSS Finder Via SSTI☆55Updated last year
- Some of the gf patterns which i use☆43Updated 3 years ago
- ☆42Updated 3 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆39Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- Mine URLs from Browser's Heap Snapshot for fun and profit☆64Updated last year
- Supertruder but better☆32Updated 2 years ago
- It grep subdomains, email/username, build custom wordlist etc from gau results☆48Updated 2 years ago
- Script for Bug Bounty☆28Updated 3 years ago
- A solid recon tool I use personally.☆30Updated last year
- A simple utility to perform reverse WHOIS lookups using whoisxml API☆40Updated 2 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆22Updated 4 years ago
- A simple utility to generate domain names with all possible TLDs☆23Updated 2 years ago
- Striping CDN IPs from a list of IP Addresses☆77Updated 2 years ago
- ☆44Updated last year