idor
Here are 41 public repositories matching this topic...
Sort: Most stars
Proactive, Open source API security → API discovery, API Security Posture, Testing in CI/CD, Test Library with 1000+ Tests, Add custom tests, Sensitive data exposure
- 
 Updated
 Oct 24, 2025 
- Java
🧿 AutorizePro是一款强大越权检测 Burp 插件,通过增加 AI 辅助分析 && 进一步优化检测逻辑,大幅降低误报率,提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it significantly reduces the false positive rate and improves the efficiency of vulnerability detection.
- 
 Updated
 Aug 3, 2025 
- Python
IDOR Forge is an advanced and versatile tool designed to detect Insecure Direct Object Reference (IDOR) vulnerabilities in web applications.
- 
 Updated
 Sep 25, 2025 
- Python
A proper approach to pentest a Web application with the mixture of all useful payloads and complete testing guidance of attacks. Designed as a quick reference cheat sheet for your pentesting and bug bounty engagement.
- 
 Updated
 Feb 12, 2025 
Welcome SecToolkit repository! This is a comprehensive collection of cybersecurity and bug bounty hunting topics. Here, you'll find a variety of resources, notes, and practical projects aimed at enhancing knowledge and skills in identifying and mitigating security vulnerabilities.
- 
 Updated
 Jun 3, 2025 
✅ Experience the power of an automated Insecure Direct Object Reference (IDOR) vulnerability detection tool. Safeguard your applications with cutting-edge technology that identifies potential security weaknesses in an efficient and streamlined manner.
- 
 Updated
 Mar 9, 2025 
- Python
Auth Mutator is a Burp Suite extension that helps you experiment with mutated authentication requests while keeping the original traffic intact. It applies user-defined replace rules, removes authentication artefacts for unauthenticated probes, and highlights noteworthy responses so you can quickly spot interesting behaviour.
- 
 Updated
 Oct 24, 2025 
- Java
A sensible no bullshit repo of summaries of reports on hackerone, bugcrowd and alike, that makes straight up sense and make it easy to repeat and automate. This is supposed to serve as my personal reference, but should be a good public index reference for like minded.
- 
 Updated
 Oct 21, 2023 
Writeups for portswigger labs.
- 
 Updated
 Feb 10, 2025 
Slides and PoCs for my DEF CON 33 & HOU.SEC.CON 2025 talk on overlooked attack surfaces across Apple's ecosystem.
- 
 Updated
 Aug 31, 2025 
- Python
This cheatsheet contains techniques, commands, and tools commonly used during web application penetration tests. It provides quick references to common vulnerabilities, exploitation techniques, and tools used in modern web application attacks.
- 
 Updated
 Apr 24, 2025 
solutions of hack-yourself-first
- 
 Updated
 Jul 18, 2024 
Better version of PwnFox
- 
 Updated
 Jun 28, 2025 
- JavaScript
A powerful Python tool for identifying Insecure Direct Object Reference (IDOR) vulnerabilities in Burp Suite traffic exports.
- 
 Updated
 Oct 24, 2025 
- Python
An easy ctf - Authentication Bypassing using IDOR vulnerability
- 
 Updated
 Dec 1, 2022 
Capture the Flag (CTF) is a cybersecurity competition that is used as a test of security skills.
- 
 Updated
 Nov 21, 2022 
- Perl
get all picture of students in amikom.ac.id
- 
 Updated
 Oct 19, 2025 
- Python
A powerful Python tool for identifying Insecure Direct Object Reference (IDOR) vulnerabilities in Burp Suite traffic exports.
- 
 Updated
 Mar 20, 2025 
- Python
Improve this page
Add a description, image, and links to the idor topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the idor topic, visit your repo's landing page and select "manage topics."