GoSecure / dtd-finderLinks
List DTDs and generate XXE payloads using those local DTDs.
☆640Updated last year
Alternatives and similar repositories for dtd-finder
Users that are interested in dtd-finder are comparing it to the libraries listed below
Sorting:
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆905Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆650Updated last year
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆609Updated 4 years ago
- HTTP file upload scanner for Burp Proxy☆413Updated 2 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆646Updated 8 months ago
- A cheatsheet for exploiting server-side SVG processors.☆768Updated 5 years ago
- Simple websites vulnerable to Server Side Template Injections(SSTI)☆402Updated 2 years ago
- Client Side Prototype Pollution Scanner☆520Updated 3 years ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆375Updated last year
- DNS rebinding toolkit☆255Updated 2 years ago
- ☆688Updated 3 years ago
- Because just a dark theme wasn't enough!☆574Updated 9 months ago
- This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack☆740Updated 2 years ago
- ☆411Updated 3 years ago
- ☆282Updated 3 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)☆756Updated 3 years ago
- Wordlists that have been compiled using Commonspeak2. This repo is updated every time new wordlists are generated.☆536Updated 7 years ago
- simple script to extract all web resources by means of .SVN folder exposed over network.☆478Updated last year
- An automated target reconnaissance pipeline.☆437Updated 2 years ago
- ☆555Updated 6 months ago
- Security Testing Scripts for JWT☆318Updated 3 years ago
- HackerOne "in scope" domains☆478Updated this week
- Apache Solr Injection Research☆576Updated 5 years ago
- Fetches javascript file from a list of URLS or subdomains.☆803Updated 2 months ago
- This repository contains all the XSS cheatsheet data to allow contributions from the community.☆442Updated last month
- Default signature for Jaeles Scanner☆324Updated 3 years ago
- HTTP file upload scanner for Burp Proxy☆490Updated last year
- Open Redirect Payloads☆635Updated 11 months ago
- A wordlist of API names for web application assessments☆848Updated 3 months ago
- A small tool that extracts relative URLs from a file.☆754Updated 5 years ago