0xless / slipLinks
Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z and zip-like (jar, war, apk, ipa, ...) archives
☆103Updated last month
Alternatives and similar repositories for slip
Users that are interested in slip are comparing it to the libraries listed below
Sorting:
- Repository to store exploits created by Assetnotes Security Research team☆178Updated last year
- Tool to enable blind sql injection attacks against websockets using sqlmap☆62Updated last month
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆54Updated 3 weeks ago
- Burp Extension to add additional functionality for pentesting websocket based applications☆95Updated last year
- Filters and highlights Proxy HTTP history for requests with potentially vulnerable parameters☆23Updated last year
- A python module to explore the object tree to extract paths to interesting objects in memory.☆97Updated 4 months ago
- ☆86Updated 2 months ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆90Updated 7 months ago
- Proof of Concept Exploit for PaperCut CVE-2023-27350☆51Updated 2 years ago
- CVE-2023-33733 reportlab RCE☆117Updated last year
- A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON☆113Updated last year
- A Burp Suite extension for finding DNS vulnerabilities in web applications!☆94Updated last year
- Java archive implant toolkit.☆61Updated 2 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions…☆64Updated 8 months ago
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆110Updated 2 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- ☆75Updated 11 months ago
- WPXStrike is a script designed to escalate a Cross-Site Scripting (XSS) vulnerability to Remote Code Execution (RCE) or other's criticals…☆66Updated last year
- A fast enumeration tool for publicly exposed Azure Storage blobs.☆95Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆164Updated 10 months ago
- ☆81Updated 8 months ago
- This tool is designed to test for file upload and XXE vulnerabilities by poisoning XLSX files.☆77Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆68Updated 2 years ago
- Use the GCP testIamPermissions functionality to bruteforce and discover your permissions☆35Updated 2 months ago
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated last year
- DHCP Server Remote Code Execution impact: 2008 R2 SP1 до Server 2019☆69Updated 2 years ago
- A (small) web exploit framework☆92Updated last week
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty☆207Updated 2 months ago