Alternatives and similar repositories for viewgen:

Users that are interested in viewgen are comparing it to the libraries listed below

• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆592Updated 3 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆617Updated 10 months ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆566Updated 11 months ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆251Updated 2 months ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆327Updated last year
• nccgroup / BurpSuiteHTTPSmuggler
  A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
  ☆717Updated 5 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆256Updated 2 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆516Updated 2 years ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆424Updated 2 years ago
• modzero / mod0BurpUploadScanner
  HTTP file upload scanner for Burp Proxy
  ☆485Updated last year
• Bo0oM / WAF-bypass-Cheat-Sheet
  Another way to bypass WAF Cheat Sheet (draft)
  ☆418Updated 6 years ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆350Updated 2 years ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆331Updated 4 years ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆197Updated 6 years ago
• epi052 / recon-pipeline
  An automated target reconnaissance pipeline.
  ☆428Updated last year
• httpvoid / CVE-Reverse
  ☆280Updated 3 years ago
• lc / theftfuzzer
  TheftFuzzer is a tool that fuzzes Cross-Origin Resource Sharing implementations for common misconfigurations.
  ☆309Updated last year
• Illuminopi / RCEvil.NET
  ☆233Updated 5 years ago
• veracode-research / solr-injection
  Apache Solr Injection Research
  ☆571Updated 4 years ago
• devoteam-cybertrust / burpcollaborator-docker
  This repository includes a set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard cer…
  ☆281Updated this week
• ZephrFish / Wordlists
  Various Payload wordlists
  ☆234Updated 4 years ago
• bao7uo / dp_crypto
  Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)
  ☆165Updated 4 years ago
• Coalfire-Research / java-deserialization-exploits
  A collection of curated Java Deserialization Exploits
  ☆589Updated 3 years ago
• xsscx / Commodity-Injection-Signatures
  Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
  ☆393Updated 5 months ago
• internetwache / CT_subdomains
  An hourly updated list of subdomains gathered from certificate transparency logs
  ☆342Updated 3 years ago
• assetnote / commonspeak2-wordlists
  Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.
  ☆522Updated 6 years ago
• mazen160 / bfac
  BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…
  ☆539Updated 2 years ago
• PortSwigger / upload-scanner
  HTTP file upload scanner for Burp Proxy
  ☆397Updated last year
• daeken / SSRFTest
  SSRF testing tool
  ☆243Updated 2 years ago