Search All Cybersecurity Tools

A tool for identifying and exploiting SSRF vulnerabilities in modern cloud environments by filtering host lists to find viable attack candidates.

A DNS rebinding toolkit

A DNS rebinding exploitation framework

A front-end JavaScript toolkit for creating DNS rebinding attacks

A malicious DNS server that executes DNS Rebinding attacks on-demand to bypass same-origin policy restrictions and access internal network resources.

A DNS rebinding attack framework for security researchers and penetration testers.

A fast CLI tool to find SSRF or Out-of-band resource load

A tool to search for Sentry config on a page or in JavaScript files and check for blind SSRF

Authenticated SSRF in Grafana

Detects and prevents SSRF attacks

A tool for identifying potential security threats by fetching known URLs and filtering out URLs with open redirection or SSRF parameters.

A smart SSRF scanner using different methods like parameter brute forcing in post and get requests.

A toolkit for detecting and tracking Blind XSS, XXE, and SSRF vulnerabilities

A simple SSRF-testing sheriff written in Go

Automatic tool for DNS rebinding-based SSRF attacks

Automated SSRF finder with options for XSS and open redirects

A tool for exploiting SSRF and gaining RCE in various servers

Automatic SSRF fuzzer and exploitation tool

A collection of customizable automation scripts for Turbo Intruder that facilitate vulnerability scanning, exploitation, and data extraction in penetration testing workflows.

A tool for exploiting HTTP/2 cleartext smuggling vulnerabilities

A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.

A Python library that simplifies testing and exploiting race conditions in web applications using concurrent HTTP requests.

A framework for testing and exploiting race condition vulnerabilities through concurrent request analysis and timing attack automation.

A Kernel fuzzer focusing on race bugs