zaproxy / fuzzdb-offensiveLinks
ZAP add-on containing the web-backdoors and attack files from FuzzDB
☆20Updated last week
Alternatives and similar repositories for fuzzdb-offensive
Users that are interested in fuzzdb-offensive are comparing it to the libraries listed below
Sorting:
- Burp Suite extension to discover assets from HTTP response.☆230Updated last year
- dns rebind tool with custom scripts☆84Updated 2 years ago
- Resolve and quickly portscan a list of (sub)domains.☆88Updated 9 years ago
- Take a list of domains/subdomains and probe for working http/https server.☆192Updated 5 years ago
- Weaponizing Live CT logs for automated monitoring of assets☆134Updated 4 years ago
- An organizational asset and vulnerability management tool, with Jira integration, designed for generating application security reports.☆183Updated this week
- ☆127Updated 4 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆54Updated 4 years ago
- Command line tool for testing CRLF injection on a list of domains.☆165Updated last year
- This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.☆92Updated 3 years ago
- A script to extract domain names from Content Security Policy(CSP) headers☆113Updated 6 years ago
- Automatic finder for subdomains vulnerable to takeover. Written in Go, based on @haccer's subjack.☆151Updated 5 years ago
- Bypassing-Web-Application-Firewalls-And-XSS-Filters A series of python scripts for generating weird character combinations and lists for…☆145Updated 5 years ago
- A tool to find sensitive keys and passwords in Travis logs☆140Updated 4 years ago
- A Python script to parse net blocks & domain names from SPF record☆85Updated 5 years ago
- Pass list of urls with FUZZ in and it will check if it has found a potential SSRF.☆112Updated 3 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that improve an active and passive scanner by yourself. This …☆63Updated 4 years ago
- A lab for playing with NoSQL Injection☆134Updated 5 years ago
- A simple tool to detect wildcards domain based on Amass's wildcards detector.☆65Updated 4 years ago
- Burp Wiener API (Legacy)☆62Updated 2 years ago
- A collection of scripts to extend Burp Suite☆142Updated 6 years ago
- Add headers to all Burp requests to bypass some WAF products☆44Updated 2 years ago
- One way to continuously monitor sensitive information that could be exposed on Github☆173Updated 5 years ago
- Extract (links/possible endpoints) from responses & filter them via decoding/sorting☆93Updated 6 years ago
- An extension to mitmproxy to dump all proxied web traffic to elasticsearch where you can keep it forever (or until you run out of disk sp…☆26Updated 9 months ago
- Scan Victim Backup Directories & Backup Files☆182Updated 2 years ago
- Ninjref is a fast & light tool for finding urls with reflected parameters from wayback & CommonCrawl it's use threads in threads to optim…☆23Updated 5 years ago
- Powerful Visual Subdomain Enumeration at the Click of a Mouse☆137Updated 6 years ago
- A script to extract subdomains/emails for a given domain using SSL/TLS certificate dataset on Censys☆153Updated 3 years ago
- Scan all possible TLD's for a given domain name☆83Updated 4 years ago