Trishul
Vulnerability scanner
Automated vulnerability detection tool for web applications
Burp Extension written in Jython to hunt for common vulnerabilities found in websites. Developed by Gaurav Narwani to help people find vulnerabilities and teach how to exploit them.
234 stars
17 watching
58 forks
Language: Python
last commit: over 4 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 xnl-h4ck3r/gap-burp-extension | An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. | 1,253 |
 kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 165 |
 vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 834 |
 codewatchorg/burp-indicatorsofvulnerability | A Burp extension that scans application traffic for signs of vulnerabilities and potential attack targets | 41 |
 bugcrowd/hunt | An extension for Burp Suite that provides a structured approach to identifying and testing common vulnerability parameters. | 2,183 |
 gand3lf/semgrepper | An extension to Burp Suite that integrates Semgrep for vulnerability scanning and analysis | 87 |
 contrast-security-oss/burptrast | Automates vulnerability assessment and endpoint discovery for web applications using Contrast Security's Teamserver API. | 16 |
 h3xstream/burp-retire-js | A tool that integrates with Burp and ZAP to identify vulnerable JavaScript libraries | 200 |
| vulnerscom/burp-dirbuster | A plugin designed to facilitate the use of Dirbuster in Burp Suite for discovering potential vulnerabilities. | 70 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 753 |
 volkandindar/agartha | An extension for a web application security testing tool that identifies vulnerabilities and exploits HTTP requests for penetration testing. | 355 |
 shenril/sitadel | A tool for identifying vulnerabilities in web applications using automated attacks and fingerprinting | 554 |
 bayotop/off-by-slash | Automatically detects alias traversal vulnerabilities in NGINX configurations by generating and testing malicious URLs. | 253 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |