CRLFsuite
CRLF scanner
A powerful tool for detecting and exploiting CRLF injection vulnerabilities in web applications
The most powerful CRLF injection (HTTP Response Splitting) scanner.
555 stars
9 watching
77 forks
Language: Python
last commit: about 1 year ago
Linked from 1 awesome list
bugbountycrlf-injectionethical-hackinghttp-response-splittingpentest-toolpentestingsecurity-toolswaf-detectionwebapp-pentesting
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 michaelstott/crlf-injection-scanner | Tool to detect CRLF injection vulnerabilities in web applications | 159 |
 ualvesdias/crlfbruter | A tool to test for vulnerabilities in URL injection attacks involving CRLF characters | 10 |
 dwisiswant0/crlfuzz | Tools to scan CRLF vulnerability in web servers | 1,333 |
 r0075h3ll/oralyzer | A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. | 753 |
 rudsarkar/crlf-injector | A tool designed to exploit vulnerabilities in web applications by injecting Carriage Return Line Feed (CRLF) characters into HTTP parameters or URLs. | 46 |
 damian89/extended-ssrf-search | An SSRF scanner written in Python to identify potential vulnerabilities by scanning predefined settings in URLs and request headers. | 274 |
 rip1s/ctfhelper | A tool that helps solve web challenges by scanning sensitive files in web servers. | 30 |
 disruptops/cred_scanner | A tool to identify sensitive data in files | 89 |
 m0nad/hellraiser | Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API | 562 |
 0ang3el/easycsrf | An extension that automatically modifies certain HTTP requests to reveal potential CSRF vulnerabilities in web applications. | 159 |
 mindpatch/lorsrf | A tool designed to identify parameters in web applications that can be exploited for SSRF or out-of-band resource load attacks. | 289 |
 laconicwolf/cors-scanner | A tool that identifies and reports CORS configuration issues in web applications | 18 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,234 |
 whwlsfb/log4j2scan | A tool that scans websites for Log4j2 remote code execution vulnerabilities using multiple DNS log platforms and supports various scan types | 773 |
 ah8r/csrf | A tool to scan websites for Cross-Site Request Forgery (CSRF) vulnerabilities and provide protection in Burp Suite Pro. | 19 |