Dhamuharker / Server-Side-Template-Injection
Template injection allows an attacker to include template code into an existant (or not) template. A template engine makes designing HTML pages easier by using static template files which at runtime replaces variables/placeholders with actual values in the HTML pages
☆13Updated 5 years ago
Alternatives and similar repositories for Server-Side-Template-Injection
Users that are interested in Server-Side-Template-Injection are comparing it to the libraries listed below
Sorting:
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated 2 years ago
- Image Tragick Exploit Tool Using Burp Collaborator☆36Updated 11 months ago
- Fuzzing for LFI using Burpsuite☆62Updated 8 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆44Updated 2 years ago
- ☆48Updated 4 years ago
- Broken Link Hijacking Burp Extension☆57Updated 5 years ago
- Local File Inclusion Burp-Suite Intruder Payload Generator Plugin☆40Updated 4 years ago
- This Repo help you to download most helpful GO tools on the system .☆21Updated 2 years ago
- web-based-fuzzer☆32Updated 4 years ago
- Simple tool to test for SSRF/OOB HTTP Read within the Path of a request☆30Updated 5 years ago
- Collection of scripts to test your website against vulnerabilities.☆18Updated last year
- Kubernetes Scanner☆40Updated 3 years ago
- A collection of scripts for bug-bounty related stuff☆38Updated 4 years ago
- Just a simple SMTP server, implementation of @corpix smtpd library☆15Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆41Updated 4 years ago
- Security test tool for Blind XSS☆26Updated 5 years ago
- XSSor is a semi-automatic reflected and persistent XSS detector extension for Burp Suite. The tool was written in Python by Barak Tawily,…☆56Updated 4 years ago
- A Python script to parse net blocks & domain names from SPF record☆84Updated 4 years ago
- Writeup of CVE-2020-15906☆48Updated 4 years ago
- Burp extension to generate multi-step CSRF POC.☆30Updated 5 years ago
- A penetration testing tool to enumerate and analyse Amazon S3 Buckets owned by a domain.☆26Updated 6 years ago
- ☆1Updated 4 years ago
- Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.☆37Updated 4 years ago
- In this repository I'll host my research and methodologies for auditing vulnerabilities☆30Updated 5 years ago
- Unauthenticated RCE at Woody Ad Snippets / CVE-2019-15858 (PoC)☆32Updated 2 years ago
- ☆24Updated 4 years ago
- Related subdomains finder☆29Updated 2 years ago
- ☆37Updated 4 years ago
- The format of various s3 buckets is convert in one format. for bugbounty and security testing.☆86Updated 2 years ago
- ☆35Updated 3 months ago