ImageTragick / PoCsLinks
Proof of Concepts for CVE-2016–3714
☆500Updated 9 years ago
Alternatives and similar repositories for PoCs
Users that are interested in PoCs are comparing it to the libraries listed below
Sorting:
- PHPMailer < 5.2.18 Remote Code Execution exploit and vulnerable container☆404Updated 2 years ago
- SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.☆465Updated 7 years ago
- Content hijacking proof-of-concept using Flash, PDF and Silverlight☆384Updated 6 years ago
- Exploits for various CVEs☆210Updated 4 years ago
- Add headers to all Burp requests to bypass some WAF products☆329Updated 7 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras☆425Updated 5 years ago
- htcap is a web application scanner able to crawl single page application (SPA) recursively by intercepting ajax calls and DOM changes.☆621Updated 3 years ago
- Authenticate against a MySQL server without knowing the cleartext password☆227Updated 3 years ago
- Collection of Proof of Concepts and Potential Targets for #ShellShocker☆888Updated 5 years ago
- An automated XSS payload generator written in python.☆315Updated 9 years ago
- Chrome extension Exploitation Framework☆567Updated 6 years ago
- ☆495Updated 9 years ago
- Next-gen BurpSuite penetration testing tool☆461Updated 9 years ago
- Web-based Source Code Vulnerability Scanner☆356Updated 7 years ago
- Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution☆391Updated 7 years ago
- Utils☆270Updated 9 years ago
- 💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002☆352Updated 6 years ago
- **DEPRECATED** This project has been replaced by https://github.com/zmap/zgrab2☆744Updated 3 years ago
- A Python Framework For NoSQL Scanning and Exploitation☆602Updated 6 months ago
- A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network☆577Updated 7 years ago
- A collection of curated Java Deserialization Exploits☆593Updated 4 years ago
- SHELLING - a comprehensive OS command injection payload generator☆445Updated 5 years ago
- Pillage web accessible GIT, HG and BZR repositories☆318Updated 8 years ago
- Analysis of DNS records to find popular trends☆449Updated 9 years ago
- 🔪Browser logic vulnerabilities☆690Updated 4 years ago
- application server attack toolkit☆685Updated 5 years ago
- Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107)☆190Updated 6 years ago
- Panoptic is an open source penetration testing tool that automates the process of search and retrieval of content for common log and conf…☆316Updated last month
- An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically☆493Updated 3 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆545Updated 8 years ago