Alternatives and similar repositories for XXE-study:

Users that are interested in XXE-study are comparing it to the libraries listed below

• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆163Updated 4 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆215Updated 8 months ago
• kunte0 / phar-jpg-polyglot
  Phar + JPG Polyglot generator and playground (CTF CODE)
  ☆84Updated 6 years ago
• hussein98d / LFI-files
  Wordlist to bruteforce for LFI
  ☆123Updated 5 years ago
• terjanq / same-origin-xss
  Same Origin XSS challenge
  ☆56Updated 2 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆113Updated 2 years ago
• vavkamil / wp-update-confusion
  WordPress Plugin Update Confusion
  ☆66Updated 3 years ago
• 0xAwali / Blind-SSRF
  Nuclei Templates to reproduce Cracking the lens's Research
  ☆124Updated 3 years ago
• PortSwigger / auth-analyzer
  ☆76Updated 10 months ago
• BlackFan / cspp-tools
  Client-Side Prototype Pollution Tools
  ☆84Updated 3 years ago
• yeswehack / pp-finder
  PP-finder Help you find gadget for prototype pollution exploitation
  ☆151Updated 7 months ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated last year
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆122Updated last year
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆286Updated 2 months ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆123Updated 2 years ago
• KathanP19 / protoscan
  Prototype Pollution Scanner
  ☆112Updated 3 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆70Updated 3 years ago
• Proviesec / directory-files-payload-lists
  Directory scans
  ☆80Updated last year
• allyomalley / BurpParamFlagger
  A Burp extension adding a passive scan check to flag parameters whose name or value may indicate a possible insertion point for SSRF or L…
  ☆130Updated 4 years ago
• emadshanab / LFI-Payload-List
  LFI Payloads List coolected from github repos
  ☆76Updated 4 years ago
• nikitastupin / param-miner-doc
  Unofficial documentation for the great tool Param Miner
  ☆178Updated 2 years ago
• KTH-LangSec / server-side-prototype-pollution
  A collection of Server-Side Prototype Pollution gadgets and exploits
  ☆174Updated last month
• pyn3rd / Spring-Boot-Vulnerability
  ☆402Updated 3 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆120Updated 3 years ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆79Updated 8 months ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆124Updated 5 years ago
• NitinYadav00 / My-Nuclei-Templates
  Nuclei Templates - Here you will find the templates I use while hunting
  ☆116Updated 3 years ago
• tree-chtsec / oswe-tools
  ☆36Updated 2 years ago