π CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
β217Feb 3, 2023Updated 3 years ago
Alternatives and similar repositories for padding-oracle-attacker
Users that are interested in padding-oracle-attacker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Blazing fast, advanced Padding Oracle exploitβ267Dec 12, 2025Updated 3 months ago
- CLI tool for PKCS7 padding oracle attacksβ142Feb 25, 2021Updated 5 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilitiesβ447Sep 7, 2022Updated 3 years ago
- Gogs CVEsβ80Nov 30, 2019Updated 6 years ago
- Padding oracle attack against PKCS7β333Oct 5, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling on Cloudways β’ AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- OpenVPN Connect for Windows (MSI) - 3.1.0.361 - Privilege Escalationβ26Feb 28, 2020Updated 6 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.β49Jul 20, 2022Updated 3 years ago
- β102May 5, 2020Updated 5 years ago
- A python-based padding oracle toolβ20Mar 16, 2026Updated last week
- A Netcat-style backdoor for pentesting and pentest exercisesβ51Nov 19, 2020Updated 5 years ago
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.β98Mar 5, 2023Updated 3 years ago
- CVE-2020-12828 PoC and Analysis.β28Jun 30, 2020Updated 5 years ago
- Burp Suite Extension useful to inspect UPnP securityβ16Nov 9, 2021Updated 4 years ago
- Tool to test for existence of CVE-2020-8218β22Sep 5, 2020Updated 5 years ago
- Wordpress hosting with auto-scaling on Cloudways β’ AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Burp Suite extension to help make Graphql request more readableβ32Dec 7, 2017Updated 8 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testingβ72Aug 31, 2020Updated 5 years ago
- Situational Awareness script to identify how and where to run implantsβ68Dec 6, 2024Updated last year
- List DTDs and generate XXE payloads using those local DTDs.β653Feb 21, 2024Updated 2 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keysβ659Feb 1, 2025Updated last year
- Web-based check for Windows privesc vulnerabilitiesβ139May 14, 2023Updated 2 years ago
- MySQL Injection Exfoliation Optimizationβ24Sep 15, 2019Updated 6 years ago
- β35Nov 2, 2022Updated 3 years ago
- Automated script for performing Padding Oracle attacksβ809Jul 13, 2024Updated last year
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Words list generator to crack security tokensβ110May 20, 2020Updated 5 years ago
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurationsβ¦β535Mar 27, 2022Updated 4 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)β100Dec 24, 2019Updated 6 years ago
- HTTP Request Smuggling over HTTP/2 Cleartext (h2c)β785May 10, 2022Updated 3 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacketβ623Aug 15, 2025Updated 7 months ago
- Post-Exploitation module for Penetration Tester and Hackers.β27Dec 29, 2021Updated 4 years ago
- A portable, padding oracle exploit APIβ332Dec 1, 2022Updated 3 years ago
- A CLI tool for querying passive DNS servicesβ42Dec 15, 2023Updated 2 years ago
- Cisco AnyConnect < 4.8.02042 privilege escalation through path traversalβ106May 25, 2020Updated 5 years ago
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- β282Nov 12, 2021Updated 4 years ago
- Citrix ADC Vulnsβ86Jul 10, 2020Updated 5 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.β346Nov 20, 2022Updated 3 years ago
- A fast http and https prober, to check which URLs are aliveβ69Aug 5, 2019Updated 6 years ago
- sploitβ67Dec 21, 2019Updated 6 years ago
- Credentials gathering tool automating remote procdump and parse of lsass process.β783Jun 20, 2020Updated 5 years ago
- Generate pentest reports based on github issues.β15Dec 8, 2022Updated 3 years ago