NodyHub / zipslipper
Create tar/zip archives that try to exploit zipslip vulnerability.
☆47Updated 5 months ago
Alternatives and similar repositories for zipslipper:
Users that are interested in zipslipper are comparing it to the libraries listed below
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- Additional active scan checks for BURP☆26Updated 5 months ago
- ☆58Updated 2 months ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated last year
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆29Updated last month
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆31Updated last week
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated this week
- Find what egress ports are allowed☆39Updated 2 years ago
- ☆31Updated 2 years ago
- Determine privileges from cloud credentials via brute-force testing.☆66Updated 6 months ago
- Manage attack surface data on Elasticsearch☆22Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- ☆15Updated 3 months ago
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆63Updated last year
- ☆42Updated 9 months ago
- One line command and control backdoors for APIs and web applications.☆50Updated 11 months ago
- Java archive implant toolkit.☆60Updated 2 weeks ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- Advanced test for proxy & waf☆13Updated 6 months ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- A tech enumeration toolkit focused on 404 Not found pages.☆24Updated 5 months ago
- self-hosted Azure OSINT tool☆26Updated 6 months ago
- Establishes mutually trusted TLS connections based on a pre-shared connection key.☆48Updated 11 months ago
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆42Updated last year
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- Do bulk whois lookups and get alerted on domains of interest.☆32Updated 7 months ago
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 3 months ago