SSRFire - An Automated SSRF Finder. Just Give The Domain Name And Your Server And Chill! Also Has Options To Find XSS And Open Redirects

Feb. 20, 2022, 11:30 a.m. | noreply@blogger.com (Unknown)

KitPloit - PenTest Tools! www.kitploit.com

An automated SSRF finder. Just give the domain name and your server and chill! ;) It also has options to find XSS and open redirects.

Syntax

./ssrfire.sh -d domain.com -s yourserver.com -f custom_file.txt -c cookies

domain.com ---> The domain for which you want to test

yourserver.com ---> Your server which detects SSRF. Eg. Burp collaborator

custom_file.txt ---> Optional argument. You give your own custom URLs instead of using gau

cookies ---> Optional argument. To send requests as an authenticated user …

domain domain name finder name redirects server ssrf xss xss detection xsstrike

Visit resource

More from www.kitploit.com / KitPloit - PenTest Tools!

Reaper - Proof Of Concept On BYOVD Attack 21 hours ago | www.kitploit.com

actions attack attackers bring your own vulnerable driver +15

Ars0N-Framework - A Modern Framework For Bug Bounty Hunting 1 day, 21 hours ago | www.kitploit.com

ars0n-framework shuffledns subdomain subdomains +6

Headerpwn - A Fuzzer For Finding Anomalies And Analyzing How Servers Respond To Different HTTP … 2 days, 21 hours ago | www.kitploit.com

burp fuzzer headerpwn headers +2

LDAPWordlistHarvester - A Tool To Generate A Wordlist From The Information Present In LDAP, In … 3 days, 21 hours ago | www.kitploit.com

accounts active directory crack domain +13

Pyrit - The Famous WPA Precomputed Cracker 4 days, 21 hours ago | www.kitploit.com

packet pyrit python2 python3 +4

SherlockChain - A Streamlined AI Analysis Framework For Solidity, Vyper And Plutus Contracts 5 days, 21 hours ago | www.kitploit.com

ai scan erc20 hacking tools etherium sherlockchain +2

Domainim - A Fast And Comprehensive Tool For Organizational Network Scanning 6 days, 21 hours ago | www.kitploit.com

bruteforcing current dns domain +20

JA4+ - Suite Of Network Fingerprinting Standards 1 week ago | www.kitploit.com

cybersecurity golang ja3 ja3 fingerprint +7

PoolParty - A Set Of Fully-Undetectable Process Injection Techniques Abusing Windows Thread Pools 1 week, 1 day ago | www.kitploit.com

abusing black hat collection injection +10

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com

all InfoSec news

SSRFire - An Automated SSRF Finder. Just Give The Domain Name And Your Server And Chill! Also Has Options To Find XSS And Open Redirects

Syntax

More from www.kitploit.com / KitPloit - PenTest Tools!

Jobs in InfoSec / Cybersecurity

CyberSOC Technical Lead

Cyber Security Strategy Consultant

Cyber Security Senior Consultant

Sr. Product Manager

Security Compliance Strategist

Cloud Security Architect, Lead