GoSecure/xxe-workshop external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

GoSecure/xxe-workshop

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/GoSecure/xxe-workshop)

Close

GoSecure / xxe-workshopView on GitHubMore

• External links
• Readme badge

Workshop given at Hack in Paris 2019

☆126Jun 8, 2023Updated 2 years ago

Alternatives and similar repositories for xxe-workshop

Users that are interested in xxe-workshop are comparing it to the libraries listed below

• GoSecure / template-injection-workshop

  View on GitHub
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆127Jan 10, 2023Updated 3 years ago
• goyalvartul / Cloud-Security-Encyclopedia

  View on GitHub
  ☆11Jan 24, 2023Updated 3 years ago
• GoSecure / 44con-code-review-workshop

  View on GitHub
  References, tools and sample payloads
  ☆11Sep 16, 2016Updated 9 years ago
• pageinsec / portswigger_academy

  View on GitHub
  Scripts and misc. stuff related to the PortSwigger Web Academy
  ☆17Feb 6, 2022Updated 4 years ago
• GoSecure / dtd-finder

  View on GitHub
  List DTDs and generate XXE payloads using those local DTDs.
  ☆648Feb 21, 2024Updated 2 years ago
• GoSecure / presentations

  View on GitHub
  Material from presentations done by GoSecure researchers
  ☆34Oct 10, 2023Updated 2 years ago
• GoSecure / unicode-pentester-cheatsheet

  View on GitHub
  An easy to navigate list of unicode characters that have risky transformations 💥
  ☆25Mar 22, 2022Updated 3 years ago
• GoSecure / security-cheat-sheet

  View on GitHub
  Minimalist cheat sheet for developpers to write secure code
  ☆54Jul 17, 2020Updated 5 years ago
• w0lfzhang / some_nday_bugs

  View on GitHub
  ☆20Jan 24, 2022Updated 4 years ago
• Kloudle / attacking-and-auditing-docker-containers-and-kubernetes-clusters-training

  View on GitHub
  ☆12Mar 31, 2021Updated 4 years ago
• boku7 / gsCMS-CustomJS-Csrf2Xss2Rce

  View on GitHub
  GetSimple CMS Custom JS Plugin Exploit RCE Chain
  ☆11Mar 8, 2023Updated 2 years ago
• sahad-mk / Exploits

  View on GitHub
  Exploit scripts
  ☆12Apr 10, 2022Updated 3 years ago
• GoSecure / goinsecure-deserialization

  View on GitHub
  Accompanying material needed for the workshop
  ☆11Jun 14, 2023Updated 2 years ago
• PalindromeLabs / Java-Deserialization-CVEs

  View on GitHub
  Compiled dataset of Java deserialization CVEs
  ☆60Aug 31, 2020Updated 5 years ago
• yashrs / Hackerone_Private_Hacktivity_Chrome_Extention

  View on GitHub
  ☆18Apr 26, 2021Updated 4 years ago
• nachiketrathod / HTTP.Request.Smuggling.Desync.Attack

  View on GitHub
  ☆15Apr 13, 2021Updated 4 years ago
• guobaoyou / vul_environment

  View on GitHub
  一些漏洞的环境/利用工具/分析
  ☆10Jul 24, 2020Updated 5 years ago
• assetnote / blind-ssrf-chains

  View on GitHub
  An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
  ☆952Dec 31, 2021Updated 4 years ago
• romanrounkle / burp_extensions

  View on GitHub
  Burp Suite Extensions
  ☆12Oct 19, 2021Updated 4 years ago
• iamthefrogy / bucketbunny

  View on GitHub
  AWS S3 open bucket poc automated script.
  ☆56Aug 23, 2021Updated 4 years ago
• SpiderMate / B-XSSRF

  View on GitHub
  Toolkit to detect and keep track on Blind XSS, XXE & SSRF
  ☆293Aug 23, 2019Updated 6 years ago
• righettod / burp-piper-custom-scripts

  View on GitHub
  Custom scripts for the PIPER Burp extensions.
  ☆97Sep 24, 2023Updated 2 years ago
• doyensec / burpdeveltraining

  View on GitHub
  Material for the training "Developing Burp Suite Extensions – From Manual Testing to Security Automation"
  ☆356Oct 14, 2020Updated 5 years ago
• dolevf / Damn-Vulnerable-GraphQL-Application

  View on GitHub
  Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practis…
  ☆1,676May 24, 2025Updated 9 months ago
• beerpwn / CVE

  View on GitHub
  CVE, reports, research
  ☆15Mar 17, 2021Updated 4 years ago
• neex / http2smugl

  View on GitHub
  ☆562Mar 27, 2025Updated 11 months ago
• filedescriptor / untrusted-types

  View on GitHub
  ☆694Jul 4, 2022Updated 3 years ago
• EspressoCake / DLL-Exports-Extraction-BOF

  View on GitHub
  DLL Exports Extraction BOF with optional NTFS transactions.
  ☆90Nov 5, 2021Updated 4 years ago
• PatrikFehrenbach / amass-tools

  View on GitHub
  ☆105Oct 18, 2020Updated 5 years ago
• ambionics / laravel-exploits

  View on GitHub
  Exploit for CVE-2021-3129
  ☆285Jan 29, 2021Updated 5 years ago
• dalbonip / theGreatRecon

  View on GitHub
  ☆27Jun 18, 2024Updated last year
• hexrom / Oracle-Pentesting-Reference

  View on GitHub
  Oracle Database Penetration Testing Reference (10g/11g)
  ☆40Jul 28, 2018Updated 7 years ago
• yeswehack / xsstools

  View on GitHub
  xss development frameworks, with the goal of making payload writing easier.
  ☆153Aug 7, 2024Updated last year
• TROUBLE-1 / White-box-pentesting

  View on GitHub
  This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities
  ☆93Jun 11, 2023Updated 2 years ago
• mgreiler / code-reviews

  View on GitHub
  code reviews to practice
  ☆18Jul 22, 2021Updated 4 years ago
• bp0lr / myGF_patterns

  View on GitHub
  ☆21Dec 15, 2020Updated 5 years ago
• nybble04 / cybersec-notes

  View on GitHub
  My cyber security notes.
  ☆14Feb 22, 2025Updated last year
• airman604 / schtask_now

  View on GitHub
  ☆18Feb 14, 2019Updated 7 years ago
• JC175 / CVE-2022-32119

  View on GitHub
  CVE-2022-32119 - Arox-Unrestricted-File-Upload
  ☆17Dec 20, 2023Updated 2 years ago