Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications
☆32Nov 4, 2022Updated 3 years ago
Alternatives and similar repositories for web-inf-path-trav
Users that are interested in web-inf-path-trav are comparing it to the libraries listed below
Sorting:
- Apache APISIX Remote Code Execution (CVE-2022-24112) proof of concept exploit☆13Mar 16, 2022Updated 3 years ago
- A script written in python3 to spread blind cross-site scripting payloads on HTTP requests headers☆10Oct 2, 2022Updated 3 years ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆29Nov 22, 2024Updated last year
- Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others☆13Feb 19, 2025Updated last year
- JSBerg is a fast and efficient URL scraper that extracts links, JavaScript files, CSS files, images, and inline URLs from a list of websi…☆23Mar 19, 2025Updated 11 months ago
- CVE-2021-41773 | CVE-2021-42013 Exploit Tool (Apache/2.4.49-2.4.50)☆10Apr 8, 2022Updated 3 years ago
- Host Header Vulnerability Scanner Automated Tool☆28Apr 18, 2025Updated 10 months ago
- Burp Suite Extensions☆12Oct 19, 2021Updated 4 years ago
- ☆16Nov 27, 2022Updated 3 years ago
- Many yaml scanner plugin parser [nuclei-template, xray-poc, ez-poc] - for Python☆13Mar 27, 2022Updated 3 years ago
- Just simple log4j scanner☆12Dec 13, 2021Updated 4 years ago
- POC - CVE-2024–4956 - Nexus Repository Manager 3 Unauthenticated Path Traversal☆16Nov 26, 2024Updated last year
- Burp extension to increment a parameter in each active scan request☆12Jul 16, 2025Updated 7 months ago
- Prototype Pollution exploits collection☆37Aug 8, 2021Updated 4 years ago
- POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability.☆17Jun 18, 2025Updated 8 months ago
- A burp extension, check Sturts2 RCE through passive scan.一款检测Struts2 RCE漏洞的burp被动扫描插件~☆15Dec 9, 2020Updated 5 years ago
- Reflected XSS Payload List for Vue.js (2 & 3)☆15Jan 12, 2023Updated 3 years ago
- ☆35Aug 2, 2022Updated 3 years ago
- A tool to guess the rest of the shortnames provided by vulnerable IIS instances.☆42Aug 12, 2023Updated 2 years ago
- ☆15Oct 11, 2022Updated 3 years ago
- CVE-2023-4634☆46Sep 7, 2023Updated 2 years ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆89Jul 5, 2022Updated 3 years ago
- ☆25Mar 11, 2025Updated 11 months ago
- This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.☆18May 21, 2024Updated last year
- Exploit for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE☆16Apr 17, 2023Updated 2 years ago
- Dig through the Wayback Machine and find sensitive or forgotten files exposed by web servers over time.☆27Mar 27, 2025Updated 11 months ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆21Jul 6, 2021Updated 4 years ago
- This tool is developed for burp suite practitioner certificate exam and HTTP Request Smuggling labs. The most important about this tool i…☆22Sep 15, 2022Updated 3 years ago
- Welcome to the 403 and 401 Bypass Techniques and Bug Bounty Tips repository! This repo is a collection of methods and strategies to bypas…☆19Dec 26, 2024Updated last year
- PoC for the recent critical vuln affecting OpenSSH versions < 9.3p2☆49Nov 9, 2024Updated last year
- ☆23Apr 21, 2022Updated 3 years ago
- Docker poc lab for CVE-2025-55182 / CVE-2025-66478 (React2Shell) detection and exploitation☆80Dec 11, 2025Updated 2 months ago
- CVE-2022-1292 OpenSSL c_rehash Vulnerability - POC☆28Jul 20, 2022Updated 3 years ago
- IIS shortname scanner + bruteforce☆55Feb 18, 2024Updated 2 years ago
- ☆76Jan 27, 2025Updated last year
- NetScan CLI is a command-line tool for retrieving and analyzing IP address information. It provides detailed subnet and organization data…☆62Sep 4, 2024Updated last year
- Things we learned from Capture The Flag hacking competitions we participated in☆21Mar 15, 2021Updated 4 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆30Oct 1, 2024Updated last year
- ☆105Jan 3, 2023Updated 3 years ago