NodyHub / zipslipper
Create tar/zip archives that try to exploit zipslip vulnerability.
☆47Updated 6 months ago
Alternatives and similar repositories for zipslipper:
Users that are interested in zipslipper are comparing it to the libraries listed below
- A set of scripts to install a Burp Collaborator Server in a docker environment, using a LetsEncrypt wildcard certificate in as simple a p…☆29Updated 2 months ago
- Additional active scan checks for BURP☆26Updated 5 months ago
- A steampipe plugin to query projectdiscovery.io tools.☆26Updated 7 months ago
- ☆59Updated 3 months ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆22Updated last week
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆40Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆31Updated 2 weeks ago
- moniorg is a tool that leverages crt.sh website to monitor domains of a target☆47Updated last year
- Determine privileges from cloud credentials via brute-force testing.☆67Updated 6 months ago
- ☆31Updated 2 years ago
- An Evil OIDC Server☆53Updated 2 years ago
- Find what egress ports are allowed☆39Updated 2 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆32Updated 11 months ago
- A tool to parse, deduplicate, and query multiple port scans.☆57Updated last year
- ☆43Updated 9 months ago
- Repro for Confusion Attacks: Exploiting Hidden Semantic Ambiguity in Apache HTTP Server!☆20Updated 6 months ago
- NullSection is an Anti-Reversing tool that applies a technique that overwrites the section header with nullbytes.☆64Updated last year
- Simple PoC for demonstrating Race Conditions on Websockets☆56Updated last year
- Manage attack surface data on Elasticsearch☆22Updated last year
- FireProx written in Go☆19Updated 11 months ago
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- A tool for quickly evaluating IAM permissions in AWS.☆57Updated last year
- Exploit for Symfony CVE-2024-50340 (forked eos)☆28Updated 3 months ago
- Collection of Docker honeypot logs from 2021 - 2024☆36Updated 5 months ago
- A blazing fast, high performance implementation of AutoRecon in Rust. A multi-threaded network reconnaissance tool which performs automa…☆39Updated 2 months ago
- Take domains on stdin and output them on stdout if they get resolved☆33Updated 2 years ago
- Advanced test for proxy & waf☆13Updated 6 months ago