MegadodoPublications / exploits

Related projects ⓘ

Alternatives and complementary repositories for exploits

• aurainfosec / xss_payloads
  XSS payloads for edge cases
  ☆34Updated 6 years ago
• ajxchapman / sshreverseshell
  Full TTY reverse shell over SSH
  ☆57Updated 4 years ago
• securifera / CVE-2019-1579
  ☆63Updated 5 years ago
• vah13 / Oracle-BI-bugs
  ☆34Updated 5 years ago
• syriusbughunt / CVE-2018-14667
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆49Updated 5 years ago
• mgeeky / burpContextAwareFuzzer
  BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…
  ☆39Updated 3 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆73Updated 4 years ago
• v-p-b / cve-2019-12750
  sploit
  ☆67Updated 4 years ago
• RootUp / PHDays9
  My fuzzing workshop from PHDays9
  ☆27Updated 5 years ago
• t0kx / exploit-CVE-2016-9920
  Roundcube 1.0.0 <= 1.2.2 Remote Code Execution exploit and vulnerable container
  ☆43Updated 7 months ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆41Updated 4 years ago
• blazeinfosec / ssrf-ntlm
  Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.
  ☆57Updated 6 years ago
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆40Updated 2 years ago
• mpgn / CVE-2019-9580
  CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE
  ☆32Updated 5 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• jra89 / CVE-2019-19634
  This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.4
  ☆36Updated 4 years ago
• modzero / interestingFileScanner
  Burp extension
  ☆57Updated 6 years ago
• ivision-research / burp-highlighter
  ☆22Updated 2 years ago
• lc / research
  miscellaneous security research stuff
  ☆38Updated 5 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆45Updated 3 years ago
• mufeedvh / CVE-2019-8449
  CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4
  ☆67Updated 4 years ago
• ni8walk3r / JWT-Exploitation
  Collection of different exploitation scenarios of JWT.
  ☆21Updated 3 years ago
• x41sec / BeanStack
  X41 BeanStack - Stack Trace Fingerprinting BETA
  ☆52Updated 4 years ago
• quahac / burp-intruder-hashcat-maskprocessor
  ☆19Updated 4 years ago
• Haxel0rd / haxel0rds
  Some private tools i decided to release for public.
  ☆49Updated 8 months ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 5 years ago
• dienuet / crossdomain
  CORS checking
  ☆35Updated 6 years ago
• redtimmy / OAMBuster
  Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)
  ☆24Updated 5 years ago