0xless / slipLinks
Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war, apk, ipa, ...) archives
☆107Updated 4 months ago
Alternatives and similar repositories for slip
Users that are interested in slip are comparing it to the libraries listed below
Sorting:
- Repository to store exploits created by Assetnotes Security Research team☆182Updated last year
- CVE-2023-33733 reportlab RCE☆119Updated 2 years ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆99Updated last month
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆139Updated 3 months ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆66Updated 5 months ago
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- ☆47Updated 8 months ago
- Session Hijacking Visual Exploitation☆205Updated last year
- MOVEit CVE-2023-34362☆138Updated 2 years ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆52Updated 2 years ago
- CVE-2024-3400 Palo Alto OS Command Injection☆161Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆65Updated last year
- CVEs and Techniques used PDF as an attack vector.☆98Updated 3 years ago
- CVE-2024-21893: SSRF Vulnerability in Ivanti Connect Secure☆91Updated last year
- Safely detect whether a FortiGate SSL VPN instance is vulnerable to CVE-2023-27997 based on response timing☆133Updated last year
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆102Updated 3 months ago
- [PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)☆90Updated 2 years ago
- Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)☆76Updated last year
- Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640☆106Updated last year
- ☆40Updated 3 months ago
- A (small) web exploit framework☆96Updated last week
- Automate converting webshells into reverse shells.☆70Updated last week
- Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters☆23Updated last year
- Burp extension for Recursive Request Exploits (RRE) — DEFCON 2025☆91Updated last month
- Fortinet FortiClient EMS SQL Injection☆51Updated last year
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆211Updated last week
- A rapid HTTP downgrade smuggling scanner written in Go.☆307Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆71Updated 2 years ago
- A GraphQL enumeration and extraction tool☆133Updated 2 years ago
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆111Updated 2 years ago