ssrfDetector

SSRF detector

A web application that detects and warns users about potential Server-side Request Forgery (SSRF) vulnerabilities.

Server-side request forgery detector

GitHub

150 stars
8 watching
31 forks
Language: JavaScript
last commit: over 7 years ago
Linked from 1 awesome list


Backlinks from these awesome lists:

Related projects:

Repository Description Stars
ksharinarayanan/ssrfire An automated tool to discover potential Server-Side Request Forgery (SSRF) vulnerabilities in web applications by scanning the domain for open redirects and testing for cross-site scripting (XSS) 953
damian89/extended-ssrf-search An SSRF scanner written in Python to identify potential vulnerabilities by scanning predefined settings in URLs and request headers. 276
incredibleindishell/ssrf_vulnerable_lab A laboratory repository demonstrating vulnerable PHP code examples for Server-Side Request Forgery (SSRF) attacks 679
teknogeek/ssrf-sheriff A tool designed to test and simulate Server-Side Request Forgery (SSRF) vulnerabilities by generating responses with configurable secret tokens 319
assetnote/surf A tool that identifies and filters potential Server-Side Request Forgery (SSRF) vulnerabilities in cloud environments by probing external hosts. 599
mindpatch/lorsrf A tool designed to identify parameters in web applications that can be exploited for SSRF or out-of-band resource load attacks. 291
mailtoharshit/forcesniffer.js A JavaScript library for detecting various device types and browsers on client-side 12
randomrobbiebf/grafana-ssrf A tool to demonstrate and exploit authenticated SSRF vulnerabilities in Grafana 78
0xinfection/xsrfprobe A toolkit designed to test and exploit Cross-Site Request Forgery vulnerabilities in websites. 1,116
bugbountyforum/xss-radar A tool designed to detect and exploit reflected cross-site scripting (XSS) vulnerabilities in web applications. 321
mandatoryprogrammer/xsshunter_client An instrument used to hunt and identify cross-site scripting (XSS) vulnerabilities by tracking correlated requests and payloads. 250
kathanp19/gaussrf A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. 168
janx/chardet2 A Ruby implementation of an encoding detection library inspired by the reactivated rchardet project 23
hisorange/browser-detect A package to identify user browser and device details using multiple well-tested packages. 1,098
jimywork/certstreamcatcher A tool that detects phishing sites in real-time by analyzing certificate transparency logs and regular expressions. 81