π CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
β215Feb 3, 2023Updated 3 years ago
Alternatives and similar repositories for padding-oracle-attacker
Users that are interested in padding-oracle-attacker are comparing it to the libraries listed below
Sorting:
- CLI tool for PKCS7 padding oracle attacksβ143Feb 25, 2021Updated 5 years ago
- Blazing fast, advanced Padding Oracle exploitβ266Dec 12, 2025Updated 2 months ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilitiesβ447Sep 7, 2022Updated 3 years ago
- Gogs CVEsβ80Nov 30, 2019Updated 6 years ago
- A Netcat-style backdoor for pentesting and pentest exercisesβ51Nov 19, 2020Updated 5 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.β49Jul 20, 2022Updated 3 years ago
- OpenVPN Connect for Windows (MSI) - 3.1.0.361 - Privilege Escalationβ26Feb 28, 2020Updated 6 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testingβ72Aug 31, 2020Updated 5 years ago
- Web-based check for Windows privesc vulnerabilitiesβ140May 14, 2023Updated 2 years ago
- Burp Suite extension to help make Graphql request more readableβ32Dec 7, 2017Updated 8 years ago
- A python-based padding oracle toolβ20Aug 14, 2024Updated last year
- CVE-2020-12828 PoC and Analysis.β28Jun 30, 2020Updated 5 years ago
- β102May 5, 2020Updated 5 years ago
- Padding oracle attack against PKCS7β334Oct 5, 2022Updated 3 years ago
- β35Nov 2, 2022Updated 3 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacketβ614Aug 15, 2025Updated 6 months ago
- List DTDs and generate XXE payloads using those local DTDs.β649Feb 21, 2024Updated 2 years ago
- Tool to test for existence of CVE-2020-8218β22Sep 5, 2020Updated 5 years ago
- Generate pentest reports based on github issues.β16Dec 8, 2022Updated 3 years ago
- Words list generator to crack security tokensβ110May 20, 2020Updated 5 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keysβ657Feb 1, 2025Updated last year
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurationsβ¦β536Mar 27, 2022Updated 3 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)β100Dec 24, 2019Updated 6 years ago
- Credentials gathering tool automating remote procdump and parse of lsass process.β782Jun 20, 2020Updated 5 years ago
- Cisco AnyConnect < 4.8.02042 privilege escalation through path traversalβ106May 25, 2020Updated 5 years ago
- sploitβ67Dec 21, 2019Updated 6 years ago
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.β98Mar 5, 2023Updated 3 years ago
- Burp Suite Extension useful to inspect UPnP securityβ16Nov 9, 2021Updated 4 years ago
- A CLI tool for querying passive DNS servicesβ42Dec 15, 2023Updated 2 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.β76Sep 2, 2020Updated 5 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via sockeβ¦β768Feb 16, 2021Updated 5 years ago
- CVE-2020-0688_EXP Auto trigger payload & encrypt methodβ146Feb 27, 2020Updated 6 years ago
- You can read the writeup on this script hereβ274Jul 12, 2020Updated 5 years ago
- β284Nov 12, 2021Updated 4 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilitiesβ205Nov 8, 2020Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.β265Nov 18, 2021Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.β612Mar 4, 2021Updated 5 years ago
- Cross Origin Resource Sharing MisConfiguration Scannerβ173Nov 17, 2021Updated 4 years ago
- A Bind Shell Using the Fax Service and a DLL Hijackβ332May 3, 2020Updated 5 years ago