DiogoMRSilva / websitesVulnerableToSSTILinks
Simple websites vulnerable to Server Side Template Injections(SSTI)
☆397Updated 2 years ago
Alternatives and similar repositories for websitesVulnerableToSSTI
Users that are interested in websitesVulnerableToSSTI are comparing it to the libraries listed below
Sorting:
- List DTDs and generate XXE payloads using those local DTDs.☆634Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆630Updated last year
- HTTP file upload scanner for Burp Proxy☆410Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆882Updated 3 years ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆732Updated last year
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆373Updated 11 months ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆431Updated last week
- A cheatsheet for exploiting server-side SVG processors.☆749Updated 5 years ago
- Because just a dark theme wasn't enough!☆572Updated 7 months ago
- ☆407Updated 3 years ago
- 🎯 Server Side Template Injection Payloads☆676Updated last year
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆255Updated 8 months ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆471Updated last year
- HTTP file upload scanner for Burp Proxy☆490Updated last year
- Client Side Prototype Pollution Scanner☆518Updated 2 years ago
- DNS rebinding toolkit☆253Updated 2 years ago
- HackerOne "in scope" domains☆464Updated this week
- ☆685Updated 3 years ago
- Open Redirect Payloads☆630Updated 9 months ago
- A simple web app with a XXE vulnerability.☆228Updated 3 years ago
- Tool to help exploit XXE vulnerabilities☆565Updated 2 years ago
- ☆545Updated 4 months ago
- List of XSS Vectors/Payloads☆1,242Updated 7 months ago
- Contents for Node.Js Security Course☆339Updated 4 years ago
- Content-Type Research☆625Updated last month
- ActiveScan++ Burp Suite Plugin☆229Updated this week
- Finds unknown classes of injection vulnerabilities☆696Updated 3 months ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆349Updated 2 years ago
- NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.☆386Updated 3 years ago
- A ready to use JSONP endpoints/payloads to help bypass content security policy (CSP) of different websites.☆717Updated last year