0x00-0x00 / CVE-2016-2098Links
Ruby On Rails unrestricted render() exploit
☆16Updated 7 years ago
Alternatives and similar repositories for CVE-2016-2098
Users that are interested in CVE-2016-2098 are comparing it to the libraries listed below
Sorting:
- ☆19Updated 4 years ago
- Burp extension for automated handling of CSRF tokens☆16Updated 7 years ago
- Spin up a reverse proxy quickly on Heroku☆14Updated 4 years ago
- A Flexible Web Shell Client, Built on Electron☆13Updated 2 years ago
- This repository contains some details about abusing outlook.☆27Updated 6 years ago
- DLL hijacking vulnerability scanner and PE infector tool☆18Updated 7 years ago
- RCE in NPM VSCode Extension☆20Updated 4 years ago
- A python-based padding oracle tool☆20Updated 9 months ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 6 years ago
- Apfell implant written in C#.☆8Updated 4 years ago
- Converts JBoss/Wildfly management users properties file to hashcat format compatible with mode 20☆12Updated 5 years ago
- Everything about xss protection technology☆15Updated 5 years ago
- ADD/SUB encoder for alphanumeric shellcode☆9Updated 5 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆33Updated 5 years ago
- A Burp Suite extension to add a custom header (e.g. JWT)☆19Updated 3 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- Identify common attack paths to get Domain Administrator☆22Updated 5 years ago
- Exactly what it sounds like, which is something rad☆22Updated 2 years ago
- Two Proof-Of-Concepts of SUID binary vulnerabilities on BMC Patrol allowing to elevate privileges from any linux user to root.☆12Updated 4 years ago
- Merge results from NMAP and Masscan into one CSV file☆18Updated 6 years ago
- Magento Security Scanner☆15Updated 3 years ago
- ☆20Updated 2 years ago
- This repository contains hit lists to use for web application content discovery.☆11Updated 8 years ago
- ☆18Updated 4 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆19Updated 5 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- RCE in Slanger using deserialization of Ruby objects☆11Updated 6 years ago
- A playground to practice SSRF Attacks against web apps☆17Updated 6 years ago
- parsers to make life easier☆13Updated 4 years ago