attack-surface-detector-burp
Vulnerability scanner
Identifies web app endpoints and parameters to help detect vulnerabilities
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
98 stars
14 watching
27 forks
Language: Java
last commit: about 1 year ago dastpentestingsecurityvulnerability
Related projects:
| Repository | Description | Stars |
|---|---|---|
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 836 |
 codewatchorg/burp-indicatorsofvulnerability | A Burp extension that scans application traffic for signs of vulnerabilities and potential attack targets | 41 |
 contrast-security-oss/burptrast | Automates vulnerability assessment and endpoint discovery for web applications using Contrast Security's Teamserver API. | 16 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,238 |
 shenril/sitadel | A tool for identifying vulnerabilities in web applications using automated attacks and fingerprinting | 555 |
 debasishm89/burpy | A tool that analyzes web application security by parsing Burp Suite logs and generating reports. | 120 |
 elkokc/reflector | An extension for Burp Suite to detect and analyze reflected XSS vulnerabilities in web applications. | 1,138 |
 gand3lf/semgrepper | An extension to Burp Suite that integrates Semgrep for vulnerability scanning and analysis | 88 |
 minamo7sen/burp-js-miner | Automates discovery of secrets and vulnerabilities in static web files | 54 |
 attackercan/burp-xss-sql-plugin | Automated tool for detecting cross-site scripting (XSS) and SQL injection vulnerabilities in web applications. | 44 |
 portswigger/additional-scanner-checks | A collection of passive scanner checks to identify security vulnerabilities in web applications | 27 |
| portswigger/backslash-powered-scanner | An extension for Burp Suite that scans for unknown classes of injection vulnerabilities using a novel approach | 643 |
 security-code-scan/security-code-scan | Detects vulnerabilities in C# and VB.NET code | 942 |
 volkandindar/agartha | An extension for a web application security testing tool that identifies vulnerabilities and exploits HTTP requests for penetration testing. | 355 |