AonCyberLabs / PadBuster
Automated script for performing Padding Oracle attacks
☆759Updated 6 months ago
Alternatives and similar repositories for PadBuster:
Users that are interested in PadBuster are comparing it to the libraries listed below
- fimap is a little python tool which can find, prepare, audit, exploit and even google automatically for local and remote file inclusion b…☆527Updated 2 years ago
- ReverShellGenerator - A tool to generate various ways to do a reverse shell☆558Updated 8 months ago
- kadimus is a tool to check and exploit lfi vulnerability.☆523Updated 4 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,058Updated last month
- A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.☆965Updated 7 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆539Updated 2 years ago
- ☆260Updated 5 years ago
- Finds unknown classes of injection vulnerabilities☆648Updated last year
- SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.☆456Updated 7 years ago
- Automatically exported from code.google.com/p/unix-privesc-check☆1,046Updated 3 years ago
- Create tar/zip archives that can exploit directory traversal vulnerabilities☆990Updated 3 years ago
- ☆1,132Updated 7 years ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆619Updated 10 months ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆426Updated 4 years ago
- DotDotPwn - The Directory Traversal Fuzzer☆1,009Updated 2 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,584Updated last month
- Debian OpenSSL Predictable PRNG (CVE-2008-0166)☆390Updated 2 years ago
- Herramienta para evadir disable_functions y open_basedir☆401Updated last year
- A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)☆631Updated 3 years ago
- Collection of Proof of Concepts and Potential Targets for #ShellShocker☆887Updated 4 years ago
- Modified version of the passing-the-hash tool collection made to work straight out of the box☆566Updated 9 years ago
- A collection of curated Java Deserialization Exploits☆591Updated 3 years ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,739Updated 2 years ago
- Automated HTTP Request Repeating With Burp Suite☆861Updated 3 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆619Updated 11 months ago
- A Burp Suite Pro extension which augments your proxy traffic by injecting non-invasive headers designed to reveal backend systems by caus…☆431Updated last year
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆595Updated last year
- Internal penetration testing tool for Linux that can be used to enumerate OS information, domain information, shares, directories, and us…☆571Updated 7 months ago
- Poodle (Padding Oracle On Downgraded Legacy Encryption) attack CVE-2014-3566☆252Updated last year
- ☆638Updated 3 months ago