NotSoSecure / Blacklist3rLinks
project-blacklist3r
☆624Updated 3 months ago
Alternatives and similar repositories for Blacklist3r
Users that are interested in Blacklist3r are comparing it to the libraries listed below
Sorting:
- JMX enumeration and attacking tool.☆488Updated 6 months ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆366Updated 3 years ago
- Java RMI Vulnerability Scanner☆909Updated last year
- Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys☆656Updated 11 months ago
- IOXIDResolver.py from AirBus Security☆259Updated 2 years ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆184Updated 3 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆645Updated last year
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆668Updated last year
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆802Updated 5 months ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆612Updated 4 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆959Updated 2 years ago
- A super small jsp webshell with file upload capabilities.☆315Updated 4 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆761Updated 4 years ago
- Log4Shell scanner for Burp Suite☆485Updated 2 years ago
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆402Updated 5 years ago
- Standalone binaries for Linux/Windows of Impacket's examples☆745Updated 2 years ago
- A pentesting tool that dumps the source code from .git even when the directory traversal is disabled☆229Updated 3 years ago
- Offline command line lookup utility for GTFOBins (https://github.com/GTFOBins/GTFOBins.github.io), LOLBAS (https://github.com/LOLBAS-Proj…☆284Updated 2 years ago
- ☆523Updated 2 years ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆887Updated 2 months ago
- A tool to make socks connections through HTTP agents☆717Updated 4 years ago
- A library for detecting known secrets across many web frameworks☆759Updated this week
- Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.☆278Updated 11 months ago
- SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications☆1,045Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆940Updated 4 years ago
- Collection of PoC and offensive techniques used by the BlackArrow Red Team☆1,143Updated last year
- Recover the default privilege set of a LOCAL/NETWORK SERVICE account☆664Updated 5 years ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆550Updated last year
- Extension for Burp Suite which uses AWS API Gateway to rotate your IP on every request.☆879Updated 10 months ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆141Updated 6 years ago