ThoundsN's repositories
auth_analyzer
Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
Autorize
Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests
autosdb-wa4e
Simple CURD php web toy project for a course.
gf
A wrapper around grep, to help you grep for things
log4j-payload-generator
Log4j jndi injects the Payload generator
openbilibili
哔哩哔哩后台源码
pentest-tools
Custom pentesting tools
proxy-provider-converter
一个可以将 Clash 订阅转换成 Proxy Provider 和 External Group(Surge) 的工具
qsfuzz
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
theftfuzzer
TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
unwebpack-sourcemap
Extract uncompiled, uncompressed SPA code from Webpack source maps.