Payload generator to exfiltrate user cookies through the PHP info page bypassing the HttpOnly flag during XSS exploitation.
☆20Dec 20, 2023Updated 2 years ago
Alternatives and similar repositories for PHP-info-cookie-stealer
Users that are interested in PHP-info-cookie-stealer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- This is my personal blog where I talk about science and technology, especially about offensive cybersecurity.☆12Dec 28, 2025Updated 4 months ago
- Mini recon script to identify the links and sensitive information from a particular link☆22Mar 9, 2021Updated 5 years ago
- PoC for CVE-2022-23940☆12May 7, 2025Updated last year
- A Collection of all things Security☆11Sep 24, 2020Updated 5 years ago
- vīlicus is a bug bounty api dashboard☆41Aug 13, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ☆53Mar 12, 2021Updated 5 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- XSS Worm which steals victim's cookies and some information also spread others. Written in js, php and java.☆10Dec 12, 2017Updated 8 years ago
- Nuclei POC 模板☆10Feb 17, 2023Updated 3 years ago
- Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX☆19Jul 22, 2023Updated 2 years ago
- JsValidator is a tool created for validating the JS files after crawlling it from waybackurls☆20Mar 13, 2023Updated 3 years ago
- ☆40Jun 12, 2024Updated last year
- The OWASP Testing Guide v4.2 Checlist [2023]☆13Jan 15, 2023Updated 3 years ago
- This script is used to automatically start/stop ec2 instance to match target ip in aws ip pool to takeover subdomain..☆17Oct 8, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Prototype-Pollution-Lab to chain the vulnerabilities between multiple accounts.☆13Sep 11, 2021Updated 4 years ago
- Burp Suite extension to encode an IP address focused to bypass application IP / domain blacklist.☆11Sep 22, 2023Updated 2 years ago
- For Interview, OSCP proof of concept code during the course.☆16Jul 26, 2019Updated 6 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- ☆23Apr 22, 2020Updated 6 years ago
- This Chromium extension scans the page for external iFrames, Scripts, and Styles, logs them to the console, and checks if their domains a…☆68Jan 6, 2026Updated 4 months ago
- Python Penetration Testing Tools☆17Jul 19, 2025Updated 9 months ago
- Public repo of Nuclei scanner templates.☆21May 22, 2023Updated 2 years ago
- ☆19Sep 21, 2018Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Reversing Citrix Gateway for XSS☆17Jul 3, 2023Updated 2 years ago
- Cannon is a post-exploitation framework fully developed using python3. You will be able to download and upload files, run pre-defined mod…☆19Jul 21, 2021Updated 4 years ago
- Blind XSS SVG☆10Mar 27, 2023Updated 3 years ago
- A Powerful XSS,RXSS,BXSS finding tool☆31Oct 29, 2025Updated 6 months ago
- Archived Please go to https://github.com/adamjsturge/xsshunter-go☆31Mar 7, 2024Updated 2 years ago
- Don't expect much :) Just expect to learn new things!☆64Mar 11, 2021Updated 5 years ago
- Strace: history, usage examples, example syscall tracer implementation☆10Mar 24, 2020Updated 6 years ago
- John the Ripper 1.8.0.13-jumbo-1-bleeding-0abfc74 2018-05-15 0832☆10May 17, 2018Updated 7 years ago
- A repository with data about APTs☆13Nov 24, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A collection of notes and tips for basic setup and security lockdown of a Linux VPS, or local VM following os install.☆52May 9, 2023Updated 2 years ago
- An Automated Framework for End-to-End Blind XSS Detection and Reporting☆16Jan 23, 2026Updated 3 months ago
- Proof-of-Concept code snippets for a variety of different process injection techniques☆23Feb 2, 2023Updated 3 years ago
- ☆16Nov 19, 2023Updated 2 years ago
- Looks for parameters in urls☆34Oct 14, 2024Updated last year
- This tool was created as a Proof of Concept to reveal the threats related to web service misconfiguration using CloudFlare as reverse pr…☆14Feb 20, 2023Updated 3 years ago
- Community curated list of template files for the nuclei engine to find security vulnerability and fingerprinting the targets.☆64Sep 30, 2025Updated 7 months ago