ssrfDetector
SSRF detector
A web application that detects and warns users about potential Server-side Request Forgery (SSRF) vulnerabilities.
Server-side request forgery detector
150 stars
8 watching
31 forks
Language: JavaScript
last commit: over 7 years ago
Linked from 1 awesome list
Related projects:
Repository | Description | Stars |
---|---|---|
ksharinarayanan/ssrfire | An automated tool to discover potential Server-Side Request Forgery (SSRF) vulnerabilities in web applications by scanning the domain for open redirects and testing for cross-site scripting (XSS) | 953 |
damian89/extended-ssrf-search | An SSRF scanner written in Python to identify potential vulnerabilities by scanning predefined settings in URLs and request headers. | 276 |
incredibleindishell/ssrf_vulnerable_lab | A laboratory repository demonstrating vulnerable PHP code examples for Server-Side Request Forgery (SSRF) attacks | 679 |
teknogeek/ssrf-sheriff | A tool designed to test and simulate Server-Side Request Forgery (SSRF) vulnerabilities by generating responses with configurable secret tokens | 319 |
assetnote/surf | A tool that identifies and filters potential Server-Side Request Forgery (SSRF) vulnerabilities in cloud environments by probing external hosts. | 599 |
mindpatch/lorsrf | A tool designed to identify parameters in web applications that can be exploited for SSRF or out-of-band resource load attacks. | 291 |
mailtoharshit/forcesniffer.js | A JavaScript library for detecting various device types and browsers on client-side | 12 |
randomrobbiebf/grafana-ssrf | A tool to demonstrate and exploit authenticated SSRF vulnerabilities in Grafana | 78 |
0xinfection/xsrfprobe | A toolkit designed to test and exploit Cross-Site Request Forgery vulnerabilities in websites. | 1,116 |
bugbountyforum/xss-radar | A tool designed to detect and exploit reflected cross-site scripting (XSS) vulnerabilities in web applications. | 321 |
mandatoryprogrammer/xsshunter_client | An instrument used to hunt and identify cross-site scripting (XSS) vulnerabilities by tracking correlated requests and payloads. | 250 |
kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 168 |
janx/chardet2 | A Ruby implementation of an encoding detection library inspired by the reactivated rchardet project | 23 |
hisorange/browser-detect | A package to identify user browser and device details using multiple well-tested packages. | 1,098 |
jimywork/certstreamcatcher | A tool that detects phishing sites in real-time by analyzing certificate transparency logs and regular expressions. | 81 |