Small tool to automate SSRF wordpress and XMLRPC finder

A Complete SSRF (Server Side Request Forgery) Scanner.

A collection of payloads for different vulnerabilities, best payload lists in one repository

a list of headers for bypassing ssrf

Web CTF CheatSheet 🐈

Generates payload for request splitting in Node 8.x and 6.x

POC for CVE-2021-22214: Gitlab SSRF

A web crawler and vulnerability scanner tool developed by Rohit Ajariwal

SSRF Testing

Server-Side Request Forgery (SSRF) remains one of the most dangerous and evolving attack vectors in cybersecurity. As cloud-native architectures, AI-driven applications, and zero-trust models gain traction, SSRF techniques have adapted to bypass traditional defenses.

An automated tool for discovering vulnerabilities in GraphQL applications through fuzzing techniques, including OS Command Injection and XSS, with a focus on OWASP Top Ten vulnerabilities.

本脚本旨在生成各类畸形URL链接，进行探测使用的payload，尝试绕过服务端ssrf限制。