Kibouo / rustpad
Multi-threaded Padding Oracle attacks against any service. Written in Rust.
☆92Updated last year
Related projects ⓘ
Alternatives and complementary repositories for rustpad
- clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerabil…☆98Updated last year
- ☆31Updated last year
- LFI to RCE via phpinfo() assistance or via controlled log file☆59Updated last year
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆55Updated last year
- Fast, compact and all-around subdomain enumeration tool written in Rust☆22Updated 2 years ago
- Utility for creating ZipSlip archives☆67Updated last year
- a deterministic finite automata ranker☆69Updated 2 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆59Updated 2 weeks ago
- A Netcat-style backdoor for pentesting and pentest exercises☆50Updated 4 years ago
- Repository to store exploits created by Assetnotes Security Research team☆175Updated last year
- [PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)☆89Updated last year
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆52Updated 5 months ago
- Exploit code for Jira Mobile Rest Plugin SSRF (CVE-2022-26135)☆87Updated 2 years ago
- A structure-aware HTTP fuzzing library☆206Updated last year
- ☆158Updated 3 years ago
- Gopher Tomcat Deployer☆47Updated 6 years ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated last year
- Signing-key abuse and update exploitation framework☆121Updated last week
- Collected && Written N day Vulns for study purpose only☆104Updated this week
- ☆43Updated last year
- ☆30Updated last year
- Looking for JAR files that are vulnerable to Log4j RCE (CVE‐2021‐44228)?☆45Updated 2 years ago
- ☆63Updated 2 years ago
- The following package is the standalone wordlist-only component to flask-unsign.☆37Updated 5 months ago
- RCE for Pega Infinity >= 8.2.1, Pega Infinity <= 8.5.2☆60Updated 3 years ago
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆86Updated 2 years ago
- CVE-2021-27928 MariaDB/MySQL-'wsrep provider' 命令注入漏洞☆60Updated last year
- CVE-2022-41852 Proof of Concept (unofficial)☆74Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆138Updated 3 months ago
- a multithreaded fast tool to preform active subdomain enumeration☆34Updated 2 years ago