Alternatives and similar repositories for pwnfaces

Users that are interested in pwnfaces are comparing it to the libraries listed below

• beescuit / crosssiteshell
  A websocket-based reverse (javascript) shell for XSS attacks.
  ☆30Updated 3 years ago
• MayankPandey01 / Sparty-2.0
  An MS Sharepoint and Frontpage Auditing Tool
  ☆57Updated last year
• ferreiraklet / icmp_reverse_shell
  ☆45Updated 2 years ago
• liquidsec / aspnetCryptTools
  Just some random small tools for dealing with asp.net Forms Authentication Cookies
  ☆28Updated 4 years ago
• p0dalirius / CVE-2021-43008-AdminerRead
  Exploit tool for CVE-2021-43008 Adminer 1.0 up to 4.6.2 Arbitrary File Read vulnerability
  ☆87Updated last year
• PenTestical / CVE-2020-9484
  ☆34Updated 3 years ago
• c3l3si4n / quickcert
  A better way of querying certificate transparency logs
  ☆87Updated 7 months ago
• kljunowsky / XXElixir
  This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.
  ☆81Updated last year
• H0j3n / EzpzSharepoint
  ☆27Updated 3 years ago
• carlosevieira / CVE-2022-40684
  PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)
  ☆87Updated 3 years ago
• vrechson / copy-to-bcheck
  BurpSuite extension to convert requests into bcheck scripts
  ☆33Updated 2 years ago
• 000pp / WSOB
  😭 WSOB is a python tool created to exploit the new vulnerability on WSO2 assigned as CVE-2022-29464.
  ☆26Updated 2 years ago
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆85Updated 3 years ago
• nowak0x01 / WPXStrike
  WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…
  ☆68Updated last year
• riramar / DesyncCL0
  A simple tool to detect vulnerabilities described here https://portswigger.net/research/browser-powered-desync-attacks.
  ☆36Updated 3 years ago
• BKreisel / sqlmap-websocket-proxy
  Tool to enable blind sql injection attacks against websockets using sqlmap
  ☆66Updated 6 months ago
• sinsinology / CVE-2024-4358
  Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)
  ☆77Updated last year
• PortSwigger / serialization-examples
  ☆42Updated last year
• roughiz / lfito_rce
  LFI to RCE via phpinfo() assistance or via controlled log file
  ☆72Updated 2 years ago
• amriunix / ona-rce
  OpenNetAdmin 18.1.1 - Remote Code Execution
  ☆31Updated 5 years ago
• Zeyad-Azima / CVE-2022-1388
  F5 BIG-IP iControl REST vulnerability RCE exploit with Java including a testing LAB
  ☆12Updated 2 years ago
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆48Updated 2 years ago
• puzzlepeaches / ffufw
  ☆145Updated last year
• PortSwigger / server-side-prototype-pollution
  ☆41Updated 2 years ago
• rtandr01d / zerologon
  Scan for and exploit the zerologon vulnerability.
  ☆10Updated 5 years ago
• ApexPredator-InfoSec / ETBD-OSEP
  Notes Template/Checklist for PEN-300 OSEP
  ☆16Updated 4 years ago
• assetnote / hopgoblin
  Adobe Experience Manager (AEM) hacking toolkit
  ☆91Updated last month
• cosad3s / hfinder
  Help recon of hostnames from specific ASN or CIDR, thanks to Robtex and BGP.HE
  ☆54Updated last year
• nowak0x01 / Drupalwned
  Drupalwned is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's critical…
  ☆40Updated last year
• synacktiv / laravel_cookie_killer
  ☆27Updated 3 years ago