Invicti-Security/web-inf-path-trav external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Invicti-Security/web-inf-path-trav

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Invicti-Security/web-inf-path-trav)

Close

Invicti-Security / web-inf-path-travView on GitHubMore

• External links
• Readme badge

Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications

☆33Nov 4, 2022Updated 3 years ago

Alternatives and similar repositories for web-inf-path-trav

Users that are interested in web-inf-path-trav are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• xitmakes / jsberg

  View on GitHub
  JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…
  ☆24Mar 19, 2025Updated last year
• unsecured-company / nsec3walker

  View on GitHub
  NSEC3 Zone Walker
  ☆13Nov 27, 2025Updated 5 months ago
• byt3hx / log4j-detect

  View on GitHub
  Just simple log4j scanner
  ☆12Dec 13, 2021Updated 4 years ago
• M4xSec / Apache-APISIX-CVE-2022-24112

  View on GitHub
  Apache APISIX Remote Code Execution (CVE-2022-24112) proof of concept exploit
  ☆14Mar 16, 2022Updated 4 years ago
• nollium / CVE-2024-50340-eos-exploit

  View on GitHub
  Exploit for Symfony CVE-2024-50340 (forked eos)
  ☆29Nov 22, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• reewardius / nuclei-dast-templates

  View on GitHub
  ☆24Apr 17, 2026Updated last month
• 0xElkot / My-Nuclei-Templates

  View on GitHub
  ☆35Aug 2, 2022Updated 3 years ago
• romanrounkle / burp_extensions

  View on GitHub
  Burp Suite Extensions
  ☆12Oct 19, 2021Updated 4 years ago
• hemantsolo / Host-Header-Injection-Vulnerability-Scanner

  View on GitHub
  Host Header Vulnerability Scanner Automated Tool
  ☆29Apr 18, 2025Updated last year
• horizon3ai / Ivanti-EPM-Coercion-Vulnerabilities

  View on GitHub
  Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others
  ☆13Feb 19, 2025Updated last year
• zerbaliy3v / custom-nuclei-templates

  View on GitHub
  my nuclei templates #new
  ☆10Jun 24, 2024Updated last year
• DEMON1A / Blinder

  View on GitHub
  A script written in python3 to spread blind cross-site scripting payloads on HTTP requests headers
  ☆10Oct 2, 2022Updated 3 years ago
• 1oid / AnyPocsYamlParser

  View on GitHub
  Many yaml scanner plugin parser [nuclei-template, xray-poc, ez-poc] - for Python
  ☆14Mar 27, 2022Updated 4 years ago
• nullenc0de / netscan

  View on GitHub
  NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…
  ☆62Sep 4, 2024Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• 0xRTH / IISRecon

  View on GitHub
  IIS shortname scanner + bruteforce
  ☆56Feb 18, 2024Updated 2 years ago
• xitmakes / scope.sh

  View on GitHub
  ☆15Mar 21, 2025Updated last year
• CalfCrusher / Path-traversal-RCE-Apache-2.4.49-2.4.50-Exploit

  View on GitHub
  CVE-2021-41773 | CVE-2021-42013 Exploit Tool (Apache/2.4.49-2.4.50)
  ☆10Apr 8, 2022Updated 4 years ago
• Philesiv / XSLeaker

  View on GitHub
  Searcher for cross-site leaks (XS-Leaks)
  ☆83Dec 27, 2022Updated 3 years ago
• projectmonke / shortnameguesser

  View on GitHub
  A tool to guess the rest of the shortnames provided by vulnerable IIS instances.
  ☆41Aug 12, 2023Updated 2 years ago
• sabir789 / BugBountyTips

  View on GitHub
  Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypas…
  ☆36Dec 26, 2024Updated last year
• federicodotta / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules
  ☆51Jul 4, 2023Updated 2 years ago
• Hancheng-Lei / Hacking-Vulnerability-CVE-2020-1938-Ghostcat

  View on GitHub
  ☆17Nov 27, 2022Updated 3 years ago
• alcaparra / CVE-2022-1292

  View on GitHub
  CVE-2022-1292 OpenSSL c_rehash Vulnerability - POC
  ☆28Jul 20, 2022Updated 3 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• tardc / CVE-2023-27524

  View on GitHub
  Apache Superset Auth Bypass (CVE-2023-27524)
  ☆11May 9, 2023Updated 3 years ago
• eternyle / ShodanIsh

  View on GitHub
  Shodan Favicon Hash Generator By Aziz Hakim @eternyle
  ☆26May 25, 2024Updated 2 years ago
• assetnote / jira-mobile-ssrf-exploit

  View on GitHub
  Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)
  ☆85Jul 5, 2022Updated 3 years ago
• nccgroup / jwt-reauth

  View on GitHub
  ☆105Jan 3, 2023Updated 3 years ago
• thelikes / fuzzmost

  View on GitHub
  all manner of wordlists
  ☆24Jan 19, 2022Updated 4 years ago
• KarimPwnz / sourcegraph-scripts

  View on GitHub
  Scripts for Sourcegraph search results. Useful for static analysis <3
  ☆28Jun 30, 2023Updated 2 years ago
• harry1080 / Struts2Burp

  View on GitHub
  A burp extension, check Sturts2 RCE through passive scan.一款检测Struts2 RCE漏洞的burp被动扫描插件~
  ☆15Dec 9, 2020Updated 5 years ago
• nullenc0de / paramhunter

  View on GitHub
  Looks for parameters in urls
  ☆34Oct 14, 2024Updated last year
• francisconeves97 / jxscout-caido

  View on GitHub
  Caido plugin for jxscout
  ☆15May 11, 2026Updated last week
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• ibrahimhaxor / Tsangaya

  View on GitHub
  ☆16Jun 26, 2025Updated 10 months ago
• doomerhunter / tampermonkey-useful-scripts

  View on GitHub
  Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"
  ☆17Jun 2, 2025Updated 11 months ago
• ifconfig-me / Wayback-Sensitive-Finder

  View on GitHub
  Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.
  ☆31Mar 27, 2025Updated last year
• corelight / cve-2022-26809

  View on GitHub
  Detects attempts and successful exploitation of CVE-2022-26809
  ☆32Sep 16, 2024Updated last year
• hackersthan / anveshan

  View on GitHub
  anveshan is a completed script that helps to automate your recon process, It finds subdomains, urls, js files, parameters, screenshots, a…
  ☆30Oct 29, 2024Updated last year
• UzJu / Gin-Vue-admin-poc-CVE-2022-21660

  View on GitHub
  CVE-2022-21660
  ☆28Jan 10, 2022Updated 4 years ago
• Mr-xn / CVE-2022-24112

  View on GitHub
  CVE-2022-24112：Apache APISIX apisix/batch-requests RCE
  ☆43Feb 22, 2022Updated 4 years ago