0xless / slipLinks
Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war, apk, ipa, ...) archives
☆104Updated 3 months ago
Alternatives and similar repositories for slip
Users that are interested in slip are comparing it to the libraries listed below
Sorting:
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆98Updated last year
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆139Updated 2 months ago
- CVE-2023-33733 reportlab RCE☆119Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆64Updated 3 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025☆45Updated last week
- MOVEit CVE-2023-34362☆138Updated 2 years ago
- ☆46Updated 6 months ago
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- A (small) web exploit framework☆93Updated 2 weeks ago
- Automate converting webshells into reverse shells.☆69Updated last week
- Session Hijacking Visual Exploitation☆203Updated last year
- PoC for CVE-2022-40684 - Authentication bypass lead to Full device takeover (Read-only)☆87Updated 2 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆70Updated 2 years ago
- ☆38Updated 2 months ago
- ☆68Updated 7 months ago
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆108Updated last year
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆95Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆90Updated last year
- ☆39Updated 2 years ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆51Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- ☆191Updated 2 years ago
- CVE-2024-3400 Palo Alto OS Command Injection☆160Updated last year
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆89Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆94Updated 2 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆29Updated last year