Captain-K-101 / Ssrf-labs
This Lab contain the sample codes Basic Labs related to Server-Side Request Forgery attack
☆20Updated 3 years ago
Related projects: ⓘ
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆48Updated 2 years ago
- ☆29Updated this week
- Every Nuclei template that has ever appeared on Github☆23Updated 2 years ago
- Check if domain has bug bounty program or not☆28Updated last year
- BBSSRF - Bug Bounty SSRF is a powerful tool to check SSRF OOB connection☆38Updated last year
- Learn what is NoSQL injection and how to find them ?☆11Updated 3 years ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆54Updated last year
- Returns results from Google search.☆48Updated last year
- Log4jScanner is a Log4j Related CVEs Scanner, Designed to Help Penetration Testers to Perform Black Box Testing on given subdomains.☆39Updated 2 years ago
- ☆34Updated 2 years ago
- The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489☆30Updated 5 months ago
- My bug bounty notes☆29Updated 3 years ago
- ☆17Updated 6 months ago
- Enhanced 403 bypass header☆21Updated 2 years ago
- ☆14Updated 2 years ago
- bug bounty automation☆12Updated 3 years ago
- A repo for tools, utils, and wrappers that are to small to put in their own repo.☆23Updated last year
- nuclei framework scripts☆30Updated 2 years ago
- This repository contains proof of concept for zero days and CVEs that were found by Omar Hashem through Security Research☆41Updated last year
- ☆43Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆37Updated 3 years ago
- collection of various grep patterns collected from tomnomnom/gf and other places☆20Updated 3 years ago
- Perform with Massive Command Injection (Chamilo)☆19Updated last year
- Mass querying whois records☆30Updated 2 years ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Updated 3 years ago
- Private vulnerability testing suite☆13Updated 3 years ago
- Spring4Shell Burp Scanner☆65Updated 2 years ago
- PoC for XSS in org.webjars:swagger-ui [3.14.2, 3.36.2]☆52Updated last year
- ☆10Updated 2 years ago
- Blind spot is a python tool for blind injection vulnerabilities , SQLi time based , Command injection , code injection , SSTI☆27Updated 3 years ago