all InfoSec news
SSRFire - An Automated SSRF Finder. Just Give The Domain Name And Your Server And Chill! Also Has Options To Find XSS And Open Redirects
KitPloit - PenTest Tools! www.kitploit.com
An automated SSRF finder. Just give the domain name and your server and chill! ;) It also has options to find XSS and open redirects.
Syntax
./ssrfire.sh -d domain.com -s yourserver.com -f custom_file.txt -c cookies
domain.com ---> The domain for which you want to test
yourserver.com ---> Your server which detects SSRF. Eg. Burp collaborator
custom_file.txt ---> Optional argument. You give your own custom URLs instead of using gau
cookies ---> Optional argument. To send requests as an authenticated user …
domain domain name finder name redirects server ssrf xss xss detection xsstrike