False positives/bad higlighting scanning REST url paths · Issue #2 · PortSwigger/backslash-powered-scanner · GitHub
![Find vulnerabilities using Software Vulnerability Scanner BurpSuite extension and Wappalyzer - YouTube Find vulnerabilities using Software Vulnerability Scanner BurpSuite extension and Wappalyzer - YouTube](https://i.ytimg.com/vi/p-aCU_C1jKk/mqdefault.jpg)
Find vulnerabilities using Software Vulnerability Scanner BurpSuite extension and Wappalyzer - YouTube
![Manual and semi-automated testing for Insecure Direct Object References (IDORs) using Burp Suite | AT&T Cybersecurity Manual and semi-automated testing for Insecure Direct Object References (IDORs) using Burp Suite | AT&T Cybersecurity](https://cdn-cybersecurity.att.com/blog-content/autorize_plugin.jpg)
Manual and semi-automated testing for Insecure Direct Object References (IDORs) using Burp Suite | AT&T Cybersecurity
![James Kettle on Twitter: "Manually testing for IDOR can get pretty tedious... so Backslash Powered Scanner will now recognise and flag iterable inputs! If you're interested in the background and philosophy behind James Kettle on Twitter: "Manually testing for IDOR can get pretty tedious... so Backslash Powered Scanner will now recognise and flag iterable inputs! If you're interested in the background and philosophy behind](https://pbs.twimg.com/media/FBvoLJEWYA8I-bX.jpg)
James Kettle on Twitter: "Manually testing for IDOR can get pretty tedious... so Backslash Powered Scanner will now recognise and flag iterable inputs! If you're interested in the background and philosophy behind
![James Kettle on Twitter: "Backslash Powered Scanner now uses the 'COM1' Windows reserved filename to identify if your input is being used in a file path on a backend. Also, you can James Kettle on Twitter: "Backslash Powered Scanner now uses the 'COM1' Windows reserved filename to identify if your input is being used in a file path on a backend. Also, you can](https://pbs.twimg.com/media/DcxDYqEWsAAaiui.jpg)
James Kettle on Twitter: "Backslash Powered Scanner now uses the 'COM1' Windows reserved filename to identify if your input is being used in a file path on a backend. Also, you can
![James Kettle on Twitter: "Facebook's servers give a mystery error if you send any HTTP header that contains " and ends in \. But not if you omit the " or the \ James Kettle on Twitter: "Facebook's servers give a mystery error if you send any HTTP header that contains " and ends in \. But not if you omit the " or the \](https://pbs.twimg.com/media/FcsGpMBXgAAF6HU.png)
James Kettle on Twitter: "Facebook's servers give a mystery error if you send any HTTP header that contains " and ends in \. But not if you omit the " or the \
![James Kettle on Twitter: "I've just released Backslash Powered Scanner v1.20. This is a fairly big refactor to lay the foundation for future enhancements. It also adds support for bulk-scanning. https://t.co/JrjhMeU73S https://t.co/wo8dEPwJOb" / James Kettle on Twitter: "I've just released Backslash Powered Scanner v1.20. This is a fairly big refactor to lay the foundation for future enhancements. It also adds support for bulk-scanning. https://t.co/JrjhMeU73S https://t.co/wo8dEPwJOb" /](https://pbs.twimg.com/media/EyXVUfqXMAM4SvG.png)