Xss-Sql-Fuzz
Vulnerability fuzzer
Automates fuzzing of XSS and SQL injection vulnerabilities in web applications using Burp Suite extensions.
burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
60 stars
4 watching
10 forks
Language: Python
last commit: almost 6 years ago
Linked from 1 awesome list
burpburp-extensionsburpsuitepython
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 attackercan/burp-xss-sql-plugin | Automated tool for detecting cross-site scripting (XSS) and SQL injection vulnerabilities in web applications. | 44 |
 initroot/burpsqltruncsanner | Automatically scans endpoints for potential SQL Truncation vulnerabilities by fuzzing request parameters | 61 |
 1n3/intruderpayloads | A collection of tools and methodologies for simulating web application attacks | 3,681 |
 wdahlenburg/logicalfuzzingengine | A Python extension for Burpsuite that generates and applies payload fuzzing to test application vulnerabilities | 10 |
 ikkisoft/bradamsa | A Burp Suite extension plugin to generate Intruder payloads using Radamsa, a fuzzer. | 87 |
 google/oss-fuzz-vulns | Records disclosed OSS-Fuzz vulnerabilities and their impact on versions and commits | 133 |
 akenofu/url_fuzzer_401_403_bypass | Fuzzes HTTP parser inconsistencies by inserting all ASCII characters at predefined insertion points in URLs | 7 |
 xer0times/sqli-query-tampering | Customizable extension for Burp Suite's Intruder to generate and process SQLi payloads with various evasion techniques. | 150 |
| google/fuzzbench | Automated testing of software components to identify vulnerabilities and weaknesses | 1,108 |
 bhass1/pyfuzz_can | A tool for generating and testing random CAN network inputs to simulate real-world conditions. | 13 |
 bitthebyte/bitblinder | A tool to detect blind XSS vulnerabilities by injecting custom payloads into HTTP requests in Burp Suite | 107 |
 henshin/filebuster | A fast and flexible web application testing tool that uses brute-force methods to discover vulnerabilities | 212 |
 xnl-h4ck3r/gap-burp-extension | An extension for Burp Suite that identifies potential security vulnerabilities in web applications by analyzing endpoints, parameters, and generating custom target wordlists. | 1,253 |
 ghostlulzhacks/waybacksqliscanner | Scans URLs from the wayback machine and tests GET parameters for SQL injection vulnerabilities. | 185 |
 fuzzdb-project/fuzzdb | A comprehensive toolset for identifying and exploiting application vulnerabilities through dynamic testing | 8,242 |