KishanBagaria / padding-oracle-attackerView external linksLinks
π CLI tool and library to execute padding oracle attacks easily, with support for concurrent network requests and an elegant UI.
β220Feb 3, 2023Updated 3 years ago
Alternatives and similar repositories for padding-oracle-attacker
Users that are interested in padding-oracle-attacker are comparing it to the libraries listed below
Sorting:
- CLI tool for PKCS7 padding oracle attacksβ142Feb 25, 2021Updated 4 years ago
- Blazing fast, advanced Padding Oracle exploitβ263Dec 12, 2025Updated 2 months ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilitiesβ446Sep 7, 2022Updated 3 years ago
- Gogs CVEsβ80Nov 30, 2019Updated 6 years ago
- Transparently log all data passed into known JavaScript sinks - Sink Logger extension for Burp.β49Jul 20, 2022Updated 3 years ago
- A Netcat-style backdoor for pentesting and pentest exercisesβ51Nov 19, 2020Updated 5 years ago
- OpenVPN Connect for Windows (MSI) - 3.1.0.361 - Privilege Escalationβ26Feb 28, 2020Updated 5 years ago
- ZIP File Raider - Burp Extension for ZIP File Payload Testingβ72Aug 31, 2020Updated 5 years ago
- Web-based check for Windows privesc vulnerabilitiesβ140May 14, 2023Updated 2 years ago
- Burp Suite extension to help make Graphql request more readableβ33Dec 7, 2017Updated 8 years ago
- A python-based padding oracle toolβ20Aug 14, 2024Updated last year
- CVE-2020-12828 PoC and Analysis.β28Jun 30, 2020Updated 5 years ago
- β103May 5, 2020Updated 5 years ago
- Padding oracle attack against PKCS7β333Oct 5, 2022Updated 3 years ago
- β35Nov 2, 2022Updated 3 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacketβ609Aug 15, 2025Updated 5 months ago
- List DTDs and generate XXE payloads using those local DTDs.β645Feb 21, 2024Updated last year
- Tool to test for existence of CVE-2020-8218β22Sep 5, 2020Updated 5 years ago
- Generate pentest reports based on github issues.β16Dec 8, 2022Updated 3 years ago
- Words list generator to crack security tokensβ110May 20, 2020Updated 5 years ago
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keysβ658Feb 1, 2025Updated last year
- a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurationsβ¦β538Mar 27, 2022Updated 3 years ago
- PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)β100Dec 24, 2019Updated 6 years ago
- Credentials gathering tool automating remote procdump and parse of lsass process.β781Jun 20, 2020Updated 5 years ago
- Cisco AnyConnect < 4.8.02042 privilege escalation through path traversalβ106May 25, 2020Updated 5 years ago
- sploitβ67Dec 21, 2019Updated 6 years ago
- Multi-threaded Padding Oracle attacks against any service. Written in Rust.β98Mar 5, 2023Updated 2 years ago
- Burp Suite Extension useful to inspect UPnP securityβ16Nov 9, 2021Updated 4 years ago
- The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.β76Sep 2, 2020Updated 5 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via sockeβ¦β768Feb 16, 2021Updated 4 years ago
- CVE-2020-0688_EXP Auto trigger payload & encrypt methodβ145Feb 27, 2020Updated 5 years ago
- You can read the writeup on this script hereβ274Jul 12, 2020Updated 5 years ago
- β284Nov 12, 2021Updated 4 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilitiesβ205Nov 8, 2020Updated 5 years ago
- Burp extension to detect alias traversal via NGINX misconfiguration at scale.β265Nov 18, 2021Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.β613Mar 4, 2021Updated 4 years ago
- Cross Origin Resource Sharing MisConfiguration Scannerβ174Nov 17, 2021Updated 4 years ago
- A Bind Shell Using the Fax Service and a DLL Hijackβ331May 3, 2020Updated 5 years ago
- Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the acβ¦β1,771Apr 26, 2024Updated last year