NodyHub / zipslipper
Create tar/zip archives that try to exploit zipslip vulnerability.
☆47Updated 6 months ago
Alternatives and similar repositories for zipslipper:
Users that are interested in zipslipper are comparing it to the libraries listed below
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆29Updated 2 months ago
- Additional active scan checks for BURP☆26Updated 5 months ago
- ☆59Updated 3 months ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆31Updated 2 weeks ago
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated last week
- Take domains on stdin and output them on stdout if they get resolved☆33Updated 2 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- Find what egress ports are allowed☆39Updated 2 years ago
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- ☆43Updated 9 months ago
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆43Updated last year
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- Manage attack surface data on Elasticsearch☆22Updated last year
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 6 months ago
- An Evil OIDC Server☆53Updated 2 years ago
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…☆40Updated 10 months ago
- A tech enumeration toolkit focused on 404 Not found pages.☆24Updated 5 months ago
- self-hosted Azure OSINT tool☆27Updated 6 months ago
- A collection of utilities for building extensions using Burp's Montoya API☆47Updated 8 months ago
- ☆15Updated 3 months ago
- ☆27Updated 2 years ago
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆64Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 3 months ago