HLOverflow / XXE-study
This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a playground to teach or test with Vulnerability scanners / WAF rules / Secure Configuration settings.
☆96Updated 5 months ago
Related projects: ⓘ
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆115Updated last year
- Nuclei Templates to reproduce Cracking the lens's Research☆122Updated 2 years ago
- Workshop given at Hack in Paris 2019☆119Updated last year
- Wordlist to bruteforce for LFI☆119Updated 4 years ago
- ☆277Updated 2 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- Phar + JPG Polyglot generator and playground (CTF CODE)☆72Updated 5 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆110Updated 4 years ago
- A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…☆130Updated 3 years ago
- Burp Bounty profiles☆82Updated 2 years ago
- ☆84Updated 7 months ago
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆54Updated last year
- LFI Payloads List coolected from github repos☆70Updated 4 years ago
- Burp Extension that copies a request and builds a FFUF skeleton☆105Updated 11 months ago
- Log4j JNDI inj. vuln scanner☆64Updated 2 years ago
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- ☆72Updated 4 months ago
- This repo contains all the injections mentioned in my talk and enumerators.☆117Updated 9 months ago
- Client-Side Prototype Pollution Tools