Kibouo / rustpad
Multi-threaded Padding Oracle attacks against any service. Written in Rust.
☆97Updated 2 years ago
Alternatives and similar repositories for rustpad:
Users that are interested in rustpad are comparing it to the libraries listed below
- clif is a command-line interface (CLI) application fuzzer, pretty much what wfuzz or ffuf are for web. It was inspired by sudo vulnerabil…☆99Updated 2 years ago
- A structure-aware HTTP fuzzing library☆212Updated 4 months ago
- ☆32Updated 2 years ago
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆122Updated 3 years ago
- Fast, compact and all-around subdomain enumeration tool written in Rust☆22Updated 3 years ago
- LFI to RCE via phpinfo() assistance or via controlled log file☆65Updated 2 years ago
- Slip is a CLI tool to create malicious archive files containing path traversal payloads. It supports zip, tar, 7z, jar, war, apk and ipa …☆98Updated last week
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆87Updated 5 months ago
- The following package is the standalone wordlist-only component to flask-unsign.☆38Updated 10 months ago
- Signing-key abuse and update exploitation framework☆125Updated 2 weeks ago
- A PoC for the CVE-2022-44268 - ImageMagick arbitrary file read☆216Updated 3 weeks ago
- Pre-Auth Blind NoSQL Injection leading to Remote Code Execution in Rocket Chat 3.12.1☆57Updated last year
- A Netcat-style backdoor for pentesting and pentest exercises☆51Updated 4 years ago
- Utility for creating ZipSlip archives☆72Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated 10 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆58Updated 10 months ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated 2 years ago
- More bind and reverse shells! This time written in Rust.☆50Updated 2 years ago
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆35Updated 2 years ago
- ☆51Updated 2 years ago
- a deterministic finite automata ranker☆70Updated 3 years ago
- Executables on Disk? Bleh 🤮☆100Updated last year
- A (small) web exploit framework☆86Updated 2 weeks ago
- Tool to enable blind sql injection attacks against websockets using sqlmap☆60Updated last year
- PoC for CVE-2020-6287 The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Or…☆96Updated 4 years ago
- [PoC] Command injection via PDF import in Markdown Preview Enhanced (VSCode, Atom)☆88Updated 2 years ago
- SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients☆70Updated 3 years ago
- Updated version of the ProtoBurp Extension, with enhanced features and capabilities to encode and fuzz custom protobuf messages☆36Updated last year
- ☆14Updated 4 months ago
- Radamsa fuzzer ported to rust lang☆152Updated last month