zzzteph / probable_subdomains

Related projects: ⓘ

• Anof-cyber / PyCript
  Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty
  ☆185Updated 2 months ago
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆344Updated 3 weeks ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆197Updated 2 months ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆115Updated last year
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆276Updated 5 months ago
• edoardottt / missing-cve-nuclei-templates
  Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration test…
  ☆318Updated this week
• RapidDNS / Afuzz
  Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.
  ☆293Updated last year
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆182Updated 3 months ago
• d3mondev / burp-vps-proxy
  This Burp Suite extension allows for the automatic creation and deletion of an upstream SOCKS5 proxy on popular cloud services.
  ☆237Updated last year
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆122Updated 2 years ago
• PortSwigger / auth-analyzer
  ☆72Updated 4 months ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆190Updated last year
• ThreatUnknown / jsubfinder
  jsubfinder searches webpages for javascript & analyzes them for hidden subdomains and secrets (wip).
  ☆259Updated 3 months ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆701Updated 3 years ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆110Updated 4 years ago
• Moopinger / smugglefuzz
  A rapid HTTP downgrade smuggling scanner written in Go.
  ☆242Updated 4 months ago
• cramppet / regulator
  Automated learning of regexes for DNS discovery
  ☆350Updated last year
• agrawalsmart7 / scodescanner
  SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
  ☆159Updated last year
• bnematzadeh / LoggerPlusPlus-API-Filters
  A Collection of Logger++ Filters for Hunting API Vulnerabilities
  ☆188Updated 2 years ago
• cve-sandbox / jquery-ui
  CVE Collection of jQuery UI XSS Payloads
  ☆110Updated last year
• Syzik / DockerRegistryGrabber
  Enumerate / Dump Docker Registry
  ☆156Updated 5 months ago
• hackvertor / hackvertor
  ☆159Updated last month
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago
• PortSwigger / js-link-finder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆159Updated 5 years ago
• hisxo / JSpector
  A simple Burp Suite extension to crawl JavaScript (JS) files in passive mode and display the results directly on the issues
  ☆342Updated last year
• geeknik / the-nuclei-templates
  Nuclei templates written by us.
  ☆264Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆98Updated 4 months ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆382Updated 5 months ago
• osmedeus / osmedeus-base
  Build your own reconnaissance system with Osmedeus Next Generation
  ☆177Updated 3 months ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆119Updated 2 years ago