idor

Star

Here are 21 public repositories matching this topic...

reddelexc / hackerone-reports

Star

Top disclosed reports from HackerOne

security xss rce reports sql-injection csrf writeups bugbounty ssrf hackerone xxe idor

Updated Nov 11, 2024
Python

akto-api-security / akto

Star

Proactive, Open source API security → API discovery, Testing in CI/CD, Test Library with 150+ Tests, Add custom tests, Sensitive data exposure

security authentication authorization api-testing hacktoberfest api-discovery owasp-top-10 devsecops security-testing api-security sensitive-data-exposure threat-detection idor devsecops-pipeline hacktoberfest2023 api-security-testing

Updated Nov 14, 2024
Java

🧿 AutorizePro是一款强大越权检测 Burp 插件，通过增加 AI 辅助分析 && 进一步优化检测逻辑，大幅降低误报率，提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.

ai authorization pentesting bugbounty vulnerability-detection burpsuite security-tools burp-extensions pentest-tool bounty-hunters idor unauthorized sdlc-tools bounty-hunting-tools broken-access-control llm idor-vulnerability unauthorized-access-tool

Updated Nov 12, 2024
Python

p1ngul1n0 / idor_explorer

Star

A python script to IDOR exploration

api web owasp pentesting pentest idor

Updated Jul 31, 2020
Python

AyemunHossain / IDORD

Star

✅ Experience the power of an automated Insecure Direct Object Reference (IDOR) vulnerability detection tool. Safeguard your applications with cutting-edge technology that identifies potential security weaknesses in an efficient and streamlined manner.

python python-script python3 cybersecurity automated-testing security-tools idor ayemunhossain insecure-direct-object-references securityscan idor-attack idor-vulnerability

Updated Nov 20, 2023
Python

n4itr0-07 / SecToolkit

Star

Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a variety of resources, notes, and practical projects aimed at enhancing knowledge and skills in identifying and mitigating security vulnerabilities.

cryptography netcat python3 enumeration nmap penetration-testing fuzzing xss-vulnerability bugbounty sqlinjection owasp-top-10 reconnaissance idor commandinjection cybersecurity-education bugbounty-writeups requestsmuggling bugbountyroadmap

Updated Nov 9, 2024

Sec0gh / Portswigger-Labs

Star

Writeups for portswigger labs.

authentication file-upload sql-injection access-control logicflow information-disclosure idor os-command-injection server-side-template-injection

Updated Dec 2, 2022

holmes-py / reports-summary

Star

A sensible no bullshit repo of summaries of reports on hackerone, bugcrowd and alike, that makes straight up sense and make it easy to repeat and automate. This is supposed to serve as my personal reference, but should be a good public index reference for like minded.

security dos hacking xss cybersecurity rce reports sql-injection csrf writeups bugbounty hacktoberfest ssrf hackerone xxe idor hackerone-reports bugbountytips bugbounty-writeups

Updated Oct 21, 2023

0x1nf3cted / uuidv1-exploit-kit

Star

uuidv1 exploit kit

exploit web-exploits idor uuidv1 idor-attack

Updated Sep 23, 2024
Python

riyyoo / TryHackMe-Neighbour-Walkthrough

Star

An easy ctf - Authentication Bypassing using IDOR vulnerability

ctf-writeups ctf vulnerabilities cyber-security ctf-solutions idor tryhackme tryhackme-writeups tryhackme-neighbour

Updated Dec 1, 2022

mrnazu / TryHackMe-CTF-s

Star

Capture the Flag (CTF) is a cybersecurity competition that is used as a test of security skills.

ctf-writeups rce csrf xss-vulnerability recon bugbounty burpsuite sqlinjection xxe-injection webhacking openredirect idor tryhackme

Updated Nov 21, 2022
Perl

NeonWhiteRabbit / cidor

Star

CIDOR, aka Canvas IDOR, is a fuzzer/downloader/cleaner using common structures used by colleges for document retrieval. Watch the POC video for CIDOR finding previous Stanford University Mid-term Tests/Answers.

downloader fuzzing college cleaner fuzzer idor

Updated Jan 29, 2022
Shell

rdzsp / idor-labs

Star

Broken Access Control Labs (IDOR)

hacking-lab idor insecure-direct-object-reference idor-labs

Updated Sep 25, 2024
PHP

christiansassi / security-testing-project

Star

Project developed for the Security Testing course.

xss sql-injection csrf cross-site-scripting client-side-validation idor cross-site-request-forgery indirect-direct-object-reference

Updated Oct 20, 2024

napSec / HTTPeeper

Star

HTTPeeper is a quick way to perform HTTP requests using GET, POST, PUT, DELETE, PATCH, and OPTIONS to a specified URL. HTTPeeper is tool to investigate web interactions across different HTTP methods.