SSRFmap Logo

SSRFmap

0
Free
Visit Website

Automatic SSRF fuzzer and exploitation tool SSRFmap is a tool designed to automatically identify and exploit Server-Side Request Forgery (SSRF) vulnerabilities in web applications. It uses a combination of techniques to identify potential SSRF vulnerabilities and exploit them to gain access to internal systems or data. SSRFmap is a powerful tool that can help security researchers and penetration testers identify and exploit SSRF vulnerabilities, but it should be used responsibly and only for legal and ethical purposes.

FEATURES

ALTERNATIVES

A CRLF and open redirect fuzzer

Emulate operating systems behind SSH servers for testing automation.

A tool for mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

Ebowla is a tool for generating payloads in Python, GO, and PowerShell with support for Reflective DLLs.

A subdomain enumeration tool for penetration testers and security researchers.

A managed code hooking template for .NET assemblies, enabling API hooking, code injection, and runtime manipulation.

Adversary emulation framework for testing security measures in network environments.

A blog post about bypassing AppLocker using PowerShell diagnostic scripts

PINNED