additional-scanner-checks
Web vulnerability scanner
A collection of passive scanner checks to identify security vulnerabilities in web applications
Collection of scanner checks missing in Burp
27 stars
8 watching
11 forks
Language: Python
last commit: over 4 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| portswigger/active-scan-plus-plus | An extension to Burp Suite's scanning capabilities designed to identify application behavior of interest to advanced testers. | 209 |
| portswigger/backslash-powered-scanner | An extension for Burp Suite that scans for unknown classes of injection vulnerabilities using a novel approach | 643 |
| portswigger/httpoxy-scanner | Tools to help identify vulnerabilities in web applications using HTTPoxy scanning. | 90 |
| portswigger/example-scanner-checks | A Java-based toolset that provides custom scanning checks and techniques for extending Burp Suite's built-in scanning capabilities. | 15 |
| portswigger/aws-security-checks | A set of automated security checks for AWS services written in Python to identify potential vulnerabilities and configuration issues. | 36 |
| portswigger/html5-auditor | An HTML validation and security testing tool for identifying vulnerabilities in web applications | 4 |
| portswigger/command-injection-attacker | An OS command injection detection and exploitation tool that provides methodologies and software for identifying and exploiting vulnerabilities in applications. | 106 |
| portswigger/json-decoder | A set of BurpSuite extensions for pentesting and testing | 10 |
 vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 838 |
| portswigger/crypto-attacker | A collection of tools and scripts for penetration testing and vulnerability assessment of web applications. | 2 |
 vinitshahdeo/portscanner | A tool for scanning network ports to identify open connections | 133 |
 sectooladdict/wavsep | An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. | 232 |
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,545 |
| portswigger/http-request-smuggler | An extension for Burp Suite to help identify and exploit HTTP Request Smuggling vulnerabilities. | 964 |
 bugcrowd/hunt | An extension for Burp Suite that provides a structured approach to identifying and testing common vulnerability parameters. | 2,192 |