A black-box scanner for HTTP request smuggling vulnerabilities caused by chunk parsing discrepancies.
☆35Oct 29, 2025Updated 8 months ago
Alternatives and similar repositories for smugchunks
Users that are interested in smugchunks are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆51Aug 2, 2025Updated 11 months ago
- Use requests to send HTTP raw sockets (To Test RFC Compliance)☆24Jun 22, 2024Updated 2 years ago
- The Jolly Executioner - a simple command execution proxy☆16Jun 9, 2024Updated 2 years ago
- Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes☆32Dec 10, 2022Updated 3 years ago
- SendToXray - Burp Suite Extender, Send HTTP request to XRAY proxy.☆11May 22, 2021Updated 5 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Signatures for wraith used to detect secrets across various sources☆15Jul 8, 2022Updated 3 years ago
- ☆13Jul 25, 2023Updated 2 years ago
- ☆10May 25, 2023Updated 3 years ago
- Abuse trust-boundaries to bypass firewalls and network controls☆422Jul 24, 2025Updated 11 months ago
- Tool for Active Directory Certificate Services enumeration and abuse☆13Oct 7, 2024Updated last year
- Pentesting Apache Tomcat 101☆14Apr 4, 2023Updated 3 years ago
- Set of PoC to abuse Windows minifilters functionality☆90May 1, 2026Updated 2 months ago
- PyBurp is a Burp Suite extension that provides predefined Python functions for HTTP/WebSocket traffic modification, context menu registra…☆39Apr 24, 2026Updated 2 months ago
- WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk…☆14Oct 8, 2018Updated 7 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- micro-gpt in ASM on the Super Nintendo☆73Feb 12, 2026Updated 4 months ago
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- ☆24Sep 6, 2025Updated 9 months ago
- Notion C2 Profile for Mythic☆47Apr 30, 2026Updated 2 months ago
- Automated GitHub secret scanning with smart alerting & monitoring.☆31Jan 15, 2026Updated 5 months ago
- A fancier postMessage tracker with Chrome Manifest version V3 support and a few additional features, inspired by Frans Rosens postmessage…☆129Sep 12, 2025Updated 9 months ago
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆32Jan 13, 2026Updated 5 months ago
- A browser bookmark to show hidden fields and enable disabled fields on a web page☆20Oct 29, 2023Updated 2 years ago
- Native C++ access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack.☆80Mar 27, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Binary Ninja Plugins to work with Unpac.Me unpacking service☆13Apr 24, 2025Updated last year
- ☆19Apr 9, 2024Updated 2 years ago
- Fast AEM scope gathering tool for all your public and private BugCrowd Programs☆10Jul 14, 2021Updated 4 years ago
- Evasion kit for Cobalt Strike☆30Jan 16, 2026Updated 5 months ago
- OWASP Foundation Web Respository☆12Jun 22, 2026Updated last week
- A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself☆98Apr 9, 2026Updated 2 months ago
- ☆18May 6, 2023Updated 3 years ago
- Repository focused on advanced Red Team tools and techniques, mainly created with C. It contains projects I have created to understand ma…☆21Updated this week
- Demo of using WASM to sandbox Plotly execution☆21Mar 30, 2025Updated last year
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- RedSage: A Cybersecurity Generalist LLM (ICLR'26)☆52May 12, 2026Updated last month
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆115Aug 30, 2022Updated 3 years ago
- ☆13Mar 14, 2022Updated 4 years ago
- 开源!自主设计的badusb电路板☆10Mar 26, 2021Updated 5 years ago
- ☆24Mar 4, 2025Updated last year
- Modified version of PEAS client for offensive operations☆51May 18, 2026Updated last month
- Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, …☆169May 12, 2026Updated last month