DistriNet / timeless-timing-attacks
A Python implementation that facilitates finding timeless timing attack vulnerabilities.
☆122Updated last year
Alternatives and similar repositories for timeless-timing-attacks:
Users that are interested in timeless-timing-attacks are comparing it to the libraries listed below
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆349Updated 2 years ago
- ☆109Updated 2 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆250Updated 5 months ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.☆259Updated 3 years ago
- A static byte code analyzer for Java deserialization gadget research☆242Updated 8 years ago
- DupeKeyInjector☆135Updated 3 years ago
- Sources for challenges of Nullcon's HackIM 2020☆57Updated 2 years ago
- A proper well structured documentation for getting started with chrome pwning & v8 pwning☆192Updated 2 years ago
- A collection of 1days and solutions to challenges related to v8/chrome I developed☆155Updated 5 years ago
- Exploitation toolkit for RichFaces☆103Updated last year
- XS-Leak Browser Test Suite☆80Updated last year
- When MVC magic turns black☆292Updated 4 years ago
- PoC for leaking text nodes via CSS injection☆36Updated 6 years ago
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆73Updated 2 years ago
- CVE-2018-13382☆148Updated 5 years ago
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆107Updated 4 years ago
- writeup of CVE-2020-1362☆232Updated 4 years ago
- CTF Writeups☆37Updated 6 years ago
- A python script to merge multiple jar files for easier debugging via JD-Eclipse☆61Updated 2 years ago
- ☆78Updated 4 years ago
- Script to recover mt_rand()'s seed with only two outputs and without any bruteforce.☆152Updated 5 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)☆101Updated 5 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆181Updated 4 years ago
- PoC of CVE-2020-16947 (Microsoft Outlook RCE vulnerablility)☆124Updated 4 years ago
- SPIKE is a protocol fuzzer creation kit. It provides an API that allows a user to create their own fuzzers for network based protocols us…☆81Updated 8 years ago
- A happy heap editor to support your exploitation process☆194Updated 3 years ago
- research☆151Updated last year
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- SOCKS5 and HTTP over TURN/STUN proxy☆178Updated last year
- 🏴☠️ Bypass Same Origin Policy with DNS-rebinding to retrieve local server files 🏴☠️☆199Updated 6 years ago