Mad-robot / Exploiting-jboss
So many shells in so little time
☆10Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for Exploiting-jboss
- burp extender for fuzzing☆10Updated 6 years ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆15Updated 5 months ago
- Unauthenticated RCE at Woody Ad Snippets / CVE-2019-15858 (PoC)☆32Updated last year
- Collection of different exploitation scenarios of JWT.☆21Updated 3 years ago
- A tool that turns the authoritative nameservers of DNS providers to resolvers and resolves the target domain list. Please think of this a…☆25Updated 5 years ago
- Static analysis of APKs with regular expressions☆10Updated 3 years ago
- Burp extension that checks application requests and responses for indicators of vulnerability or targets for attack☆41Updated last year
- [PHP][Python] Root Exploiter – No Back-Connect☆10Updated 3 years ago
- The official exploit for Open-AudIT v3.3.1 Remote Code Execution CVE-2020-12078☆18Updated 4 years ago
- Everything about xss protection technology☆15Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- Insecure Deserialization, PDF and lab☆17Updated 4 years ago
- ☆22Updated 2 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- ☆19Updated 4 years ago
- RAS(RAndom Subdomain) Fuzzer☆43Updated 4 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 3 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- Accompanying material needed for the workshop☆11Updated last year
- Exploit CVE-2020-13886 - LFI Intelbras TIP 200 / 200 LITE /☆10Updated 3 years ago
- A Mozilla Firefox extension which allows quick access to your google-dorking result☆19Updated 4 years ago
- A better dns bruteforcer written in golang☆13Updated 6 years ago
- Find unreferenced AWS S3 buckets which have CloudFront CNAME records pointing to them☆37Updated 6 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆18Updated 4 years ago
- web-based-fuzzer☆32Updated 4 years ago
- Pulse SSL VPN Arbitrary File Read burp extension☆24Updated 5 years ago