hpy
Follow
Stars
Quickly find differences and similarities in disassembled code
The only GraphQL wordlist you'll ever need. Operations, field names, type names... Collected on more than 60k distinct GraphQL schemas.
A set of simple servers (currently HTTP/HTTPS and DNS) which allow configurable and scriptable responses to network requests.
A Burp Suite extension for finding DNS vulnerabilities in web applications!
CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request Smuggling vulnerability.
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate. The objective is to simplify as much as possible t…
Extract JavaScript files from burp suite project with ease.
A library for detecting known secrets across many web frameworks
The result of scraping over 500 million web pages to form the mother of all wordlists
Deploy a SOCKS5 proxy in DigitalOcean and autoconfigure the Burp proxy settings to route all traffic through the droplet
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
Grammar-based HTTP/1 fuzzer with mutation ability
GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
Cybersecurity of Machine Learning and Artificial Intelligence
RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
Parse HPROF files from the Spring Boot Heapdump Actuator
A tool to dump Java serialization streams in a more human readable form.
Pre-Built Vulnerable Environments Based on Docker-Compose